Full Disclosure mailing list archives

Re: Airscanner Mobile Security Advisory #07101401: Mobile-spy Victim/User Phone/SMS/URL Log Spoofing and Persistent XSS Injection

From: reepex <reepex () gmail com>
Date: Tue, 23 Oct 2007 13:22:36 -0500

On 10/23/07, Seth Fogie <seth () airscanner com> wrote:


* Risk Level:*
High - Spoofed log records / Injected JavaScript can lead to malware
attacks

Risk level high and javascript do not belong together

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Airscanner Mobile Security Advisory #07101401: Mobile-spy Victim/User Phone/SMS/URL Log Spoofing and Persistent XSS Injection Seth Fogie (Oct 23)
- Re: Airscanner Mobile Security Advisory #07101401: Mobile-spy Victim/User Phone/SMS/URL Log Spoofing and Persistent XSS Injection reepex (Oct 23)