Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerability
From: petard <petard@freeshell.org>
Date: Thu Dec 11 2003 - 13:20:14 CST
Date: Thu Dec 11 2003 - 13:20:14 CST
On Thu, Dec 11, 2003 at 11:49:07AM -0600, Schmehl, Paul L wrote:
> Hey, I like that one. That's the first time I've even been to slashdot
> and see www.microsoft.com in the address bar. :-)
>
It gets better... it works with SSL sites as well. The little lock, and
no warning message:
http://petard.freeshell.org/hotmail-pr.html
petard
-- If your message really might be confidential, download my PGP key here: http://petard.freeshell.org/petard.asc and encrypt it. Otherwise, save bandwidth and lose the disclaimer. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.htmlReceived on Thu Dec 11 13:42:28 2003
This archive was generated by hypermail 2.1.8 : Thu Dec 11 2003 - 14:01:01 CST
Custom Search
