Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

De-anonymizer

From: Berend-Jan Wever <skylined () edup tudelft nl>
Date: 23 Apr 2002 10:26:12 -0000


I have "hacked" my way out of anonymizer with Cross-site 
scripting:
http://anon.free.anonymizer.com/http://spoor12.edup.tudelft.
nl/SkyLined/docs/de_anonymizer.labs.html

It uses a &lt;SCRIPT&gt; tag without a closing &lt;/SCRIPT&gt; tag to 
fool anonymizer into allowing an onError event to pass 
filters. This allows me to execute javascript with obvious 
security breaches.


Anonymizer was informed of the situation.

Kind regards,

Berend-Jan Wever
http://spoor12.edup.tudelft.nl
Previous By Date Next
Previous By Thread Next

Current thread: