Full Disclosure mailing list archives
Re: nVidia.com [Url Redirection flaw]
From: Eitan Adler <eitanadlerlist () gmail com>
Date: Tue, 24 Mar 2009 20:26:04 -0400
ascii wrote:
Pete Licoln wrote:It's just a browser based Js redirection....http://www.nvidia.com/content/DriverDownload/download_confirmation.asp?kw=&url=http://whatismyip.com and what makes it worst than an http redirection? http://www.nvidia.com/content/DriverDownload/download_confirmation.asp?kw=&url=javascript:alert(document.domain); bye!
Has this been reported to nvidia's web/security team? The real test of a company's security is how fast and how well they fix security problems. Code is almost never perfect. -- Eitan Adler "Security is increased by designing for the way humans actually behave." -Jakob Nielsen _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: nVidia.com [Url Redirection flaw], (continued)
- Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
- Re: nVidia.com [Url Redirection flaw] yersinia (Mar 25)
- Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 25)
- Re: nVidia.com [Url Redirection flaw] Chris Evans (Mar 25)
- Re: nVidia.com [Url Redirection flaw] Pete Licoln (Mar 25)
- Re: nVidia.com [Url Redirection flaw] Nick FitzGerald (Mar 26)
- Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
- Re: nVidia.com [Url Redirection flaw] Nick FitzGerald (Mar 25)
- Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 25)
- Re: nVidia.com [Url Redirection flaw] ascii (Mar 24)
- Re: nVidia.com [Url Redirection flaw] Eitan Adler (Mar 24)
- Re: nVidia.com [Url Redirection flaw] Jan G.B. (Mar 25)
- Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
- Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)
- Re: nVidia.com [Url Redirection flaw] Rubén Camarero (Mar 24)