Vulnerability Development mailing list archives

Re: CSS implication

From: zero <zeroboy () arrakis es>
Date: Mon, 18 Mar 2002 09:36:04 +0100


Having a bit of trouble understanding what you mean....
but...I think your right, some XSS attacks dont have to "directly " effect
the user, but they manipulate them in some way. However, I still think this
type of attack would be grouped as an implication of XSS.

Yeap, that's it. What I mean is that sometimes, you can send thebogus code into a board or a forum, which makes it even more dangerouscause it will be executed by every user that views the page. On the otherhand you've got other CSS attacks which you only can execute code if youpass and exact url, and only once, cause the link doesn't gets stored onthe server.




mailto:zeroboy () arrakis es
http://www.podergeek.com
http://www.citfi.org
**************************************************

"The further backward you look, the further forward you can see" WinstonChurchill

 "Para ganar, hay gente que debe perder"

Current thread:

CSS implication zero (Mar 16)
- Re: CSS implication Jeremiah Grossman (Mar 16)
- <Possible follow-ups>
- Re: CSS implication Frog Man (Mar 17)
  - Re: CSS implication Bill Weiss (Mar 17)
- Re: CSS implication zero (Mar 17)
  - Re: CSS implication Jeremiah Grossman (Mar 18)
    - Re: CSS implication zero (Mar 18)
    - Re: CSS implication Jeremiah Grossman (Mar 19)
    - Re: CSS implication Sverre H. Huseby (Mar 23)
- RE: CSS implication Matt Priestley (Mar 17)
  - Re: CSS implication Arta (Mar 18)
- Re: CSS implication b0iler _ (Mar 20)
  - Re: CSS implication HarryM (Mar 21)
  - Re: CSS implication Sverre H. Huseby (Mar 21)