Bugtraq mailing list archives

L0pht Advisory: IE4.0

From: pete () SMS FI (Petri Helenius)
Date: Tue, 11 Nov 1997 00:29:49 +0200


DilDog writes:

      Document:  L0pht Security Advisory
    URL Origin:  http://l0pht.com/advisories.html
  Release Date:  November 1st, 1997
   Application:  Microsoft Internet Explorer 4.0 Suite
      Severity:  Viewing remote HTML content can execute arbitrary native code
        Author:  dildog () l0pht com
 Operating Sys:  Windows 95


Anyone thought of combining this with the recent P5 bug for maximum
amusement value?

Pete

Current thread:

CERT Advisory CA-97.25 - REVISED- Code Correction, (continued)
- - - CERT Advisory CA-97.25 - REVISED- Code Correction Aleph One (Nov 12)
    - Bug In Security Dynamics' FTP server (Version 2.2) sp00n (Nov 12)
    - Intel Pentium Bug: BSDI Releases a patch Joe Ilacqua (Nov 11)
  - Re: Intel Pentium Bug Jason Parsons (Nov 09)
    - Re: Intel Pentium Bug Kragen \ (Nov 10)
    - Possible solution: [Fwd: I figured out how to make my Pentium Miguel Angel Rodriguez Jodar (Nov 10)
    - Re: Intel Pentium Bug Tim Newsham (Nov 10)
    - CERT Advisory CA-97.25 - CGI_metachar Aleph One (Nov 10)
    - Re: CERT Advisory CA-97.25 - CGI_metachar Greg Bacon (Nov 11)
  - L0pht Advisory: IE4.0 DilDog (Nov 10)
    - L0pht Advisory: IE4.0 Petri Helenius (Nov 10)
    - Cisco IOS password encryption facts John Bashinski (Nov 10)
    - Re: Cisco IOS password encryption facts ice9 (Nov 11)
    - Re: Cisco IOS password encryption facts J. Sean Connell (Nov 11)
    - Re: Cisco IOS password encryption facts Michael Degerman (Nov 13)
    - mode of the i586 F0 bug VaX#n8 (Nov 12)
    - Re: mode of the i586 F0 bug Alan Cox (Nov 12)
    - Linux F00F Patch Aleph One (Nov 12)
    - Re: Safe /tmp cleanup Randal Schwartz (Nov 12)
    - Re: Safe /tmp cleanup dsiebert () ICAEN UIOWA EDU (Nov 13)
    - another buffer overrun in sperl5.003 Pavel Kankovsky (Nov 13)

(Thread continues...)