Firewall Wizards mailing list archives
Re: Applications Proxies
From: Gary Flynn <flynngn () jmu edu>
Date: Fri, 21 Dec 2001 07:47:33 -0500
Jeff Newton wrote:
Would a HTTP proxy defend against the latest Microsoft IE vulnerabilty (MS01-058) that downloads and executes code due to modifications of content-disposition and content-type?
I would think it could compare the name= field against the content-type and block responses that don't match. -- Gary Flynn Security Engineer - Technical Services James Madison University Please R.U.N.S.A.F.E. http://www.jmu.edu/computing/runsafe _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://list.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- Applications Proxies Oscar Batyrbaev (Dec 19)
- Re: Applications Proxies Paul Robertson (Dec 20)
- Re: Applications Proxies Jeff Newton (Dec 20)
- Re: Applications Proxies Gary Flynn (Dec 22)
- Re: Applications Proxies Jeff Newton (Dec 20)
- Re: Applications Proxies Paul Robertson (Dec 20)