Full Disclosure mailing list archives
Re: RE: FWD: Internet Explorer URL parsing vulnerability
From: Georgi Guninski <guninski () guninski com>
Date: Wed, 10 Dec 2003 18:59:41 +0200
On Wed, 10 Dec 2003 16:06:20 +0100 Rainer Gerhards <rgerhards () hq adiscon com> wrote:
Just to add http://www.microsoft.com:security%00 () www linux org/ works equally well with Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030225 under Red Hat Linux 9. So it is not just an IE issue...
On mozilla 1.5 the above does not work. The location bar displays http://www.microsoft.com:security%00 () www linux org/ which seems the expected behavior. On linux more fun seems this: http://www.microsoft.com__________________________________________________________________ () www fuckmicrosoft com/ georgi _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Re: Internet Explorer URL parsing vulnerability, (continued)
- Re: Re: Internet Explorer URL parsing vulnerability Exibar (Dec 10)
- RE: Re: Internet Explorer URL parsing vulnerability Rui Pereira (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability Exibar (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability Gregory A. Gilliss (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability Michael Gale (Dec 10)
- RE: Re: Internet Explorer URL parsing vulnerability Kristian Hermansen (Dec 11)
- RE: Re: Internet Explorer URL parsing vulnerability Karlis Zigurs (Dec 11)
- Re: Re: Internet Explorer URL parsing vulnerability Valdis . Kletnieks (Dec 11)
- RE: RE: FWD: Internet Explorer URL parsing vulnerability Rainer Gerhards (Dec 10)
- Re: RE: FWD: Internet Explorer URL parsing vulnerability Georgi Guninski (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability S G Masood (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability John Sage (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability Daniel H. Renner (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability petard (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability Jedi/Sector One (Dec 10)
- Re: Re: Internet Explorer URL parsing vulnerability Valdis . Kletnieks (Dec 10)