Bugtraq mailing list archives
RE: Vulnerable cached objects in IE (9 advisories in 1)
From: "GreyMagic Software" <security () greymagic com>
Date: Wed, 23 Oct 2002 11:02:52 +0200
The external method flaw also seems to affects my ie6 sp1 browser
Indeed, it was overlooked in the final write-up of the advisory. It's also worth mentioning that IE6 SP1 is vulnerable to the "clipboardData" object caching as well, which, unfortunately, wasn't mentioned before. The advisory and demonstration have been revised to reflect these and IE6 SP1 is again open to local file reading, program execution and clipboard control in addition to global access to any domain. http://sec.greymagic.com/adv/gm012-ie/
Current thread:
- Vulnerable cached objects in IE (9 advisories in 1) GreyMagic Software (Oct 22)
- Re: Vulnerable cached objects in IE (9 advisories in 1) jelmer (Oct 22)
- RE: Vulnerable cached objects in IE (9 advisories in 1) GreyMagic Software (Oct 23)
- <Possible follow-ups>
- RE: Vulnerable cached objects in IE (9 advisories in 1) Thor Larholm (Oct 23)
- Re: Vulnerable cached objects in IE (9 advisories in 1) jelmer (Oct 22)