Full Disclosure mailing list archives
Re: IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006
From: "HASEGAWA Yosuke " <yosuke.hasegawa () gmail com>
Date: Fri, 27 Oct 2006 19:35:03 +0900
Hi. On 10/27/06, LIUDIEYU dot COM <liudieyu.com () gmail com> wrote:
Upon IE7 release, Secunia published SA22477 titled `Internet Explorer 7 "mhtml:" Redirection Information Disclosure`.
It seems to be able to make redirecting with mhtml fail by returning
the response by 201 or 202.
There for, It is possible for this to prevent trying to steal the
contents of your server via mhtml redirection.
--
HASEGAWA Yosuke
yosuke.hasegawa () gmail com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 LIUDIEYU dot COM (Oct 26)
- Re: IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 HASEGAWA Yosuke (Oct 27)
- Re: IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 Jerome Athias (Oct 27)
- Message not available
- Message not available
- Fwd: IE7 is a Source of Problem - Secunia IE7 Release Incident of October 2006 LIUDIEYU dot COM (Oct 29)
- Message not available