Vulnerability Development mailing list archives
Re: IE without Images
From: De Velopment <devel () www2 kparker org>
Date: Fri, 12 Jul 2002 22:52:26 -0700 (PDT)
On Fri, 12 Jul 2002, Nexus wrote (in part):
It's an odd one - appears as a 1x1 jpg in Irfanview - if you run strings on it, it's chock full of xml code, which seems odd for a jpg ;-)
The bottom line here is if there are circumstances where Internet Explorer will execute XML code in a JPG file. If so, that is a *serious* security hole, IMNSHO. Best regards, Ken Parker (devel () www2 kparker org)
Current thread:
- IE without Images Andreas Vogler (Jul 11)
- Re: IE without Images quentyn (Jul 11)
- Re: IE without Images Markus Fischer (Jul 11)
- Message not available
- Re: IE without Images Markus Fischer (Jul 12)
- Message not available
- Re: IE without Images Nexus (Jul 12)
- Re: IE without Images De Velopment (Jul 13)
- Re: IE without Images Nighttwix (Jul 12)
- RE: IE without Images Ryan Goetzinger (Jul 12)
- <Possible follow-ups>
- RE: IE without Images Carey, Steve T ISD (Jul 11)
- Re: IE without Images winx () btconnect com (Jul 12)