Full Disclosure mailing list archives
Re: Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability
From: Michal Zalewski <lcamtuf () dione ids pl>
Date: Fri, 23 Feb 2007 22:59:35 +0100 (CET)
On Fri, 23 Feb 2007, Stefan Esser wrote:
Proof of Concept: The Hardened-PHP Project is not going to release a proof of concept exploit for this vulnerability.
...because pretty much no exploit is needed. Scary. Good catch. /mz _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability Stefan Esser (Feb 23)
- Re: Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability Michal Zalewski (Feb 23)
- Re: Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability pdp (architect) (Feb 24)
- Re: Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability Matthew Flaschen (Feb 23)
- Re: Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability Stefan Esser (Feb 24)
- Re: Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability Michal Zalewski (Feb 23)