[News] Internet Explorer Sports New XSS Vulnerability

Home	Messages Index

[Date Prev]	[Date Next]	[Thread Prev]	[Thread Next]

Author Index	Date Index	Thread Index

[News] Internet Explorer Sports New XSS Vulnerability

Subject: [News] Internet Explorer Sports New XSS Vulnerability
From: Roy Schestowitz <newsgroups@xxxxxxxxxxxxxxx>
Date: Fri, 08 Sep 2006 08:25:47 +0100
Newsgroups: comp.os.linux.advocacy
Organization: schestowitz.com / ISBE, Manchester University / ITS / Netscape / MCC
Reply-to: newsgroups@xxxxxxxxxxxxxxx
User-agent: KNode/0.7.2

16 hours ago.

,----[ Quote ]
| Input passed in uploaded attachments is not properly verified before
| being used. This can be exploited to execute arbitrary HTML and script
| code in a user's browser session in context of an affected site when a
| specially crafted image is viewed directly in the Microsoft Internet
| Explorer browser.
`----

http://www.secuobs.com/secumail/snsecumail/msg02316.shtml

[Date Prev]	[Date Next]	[Thread Prev]	[Thread Next]

Author Index	Date Index	Thread Index