Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerability
From: S G Masood <sgmasood@yahoo.com>
Date: Fri Dec 12 2003 - 13:01:24 CST
Date: Fri Dec 12 2003 - 13:01:24 CST
Hello,
I was expecting that someone would come up with an
explanation as to why the 0x01 trick works. 0x00,
0x0A, 0x0D causing problems would be understandable
but, 0x01 causing problems is somewhat strange. This
is not the first time IE has a problem with the 0x01
byte embedded in the URL:
[1]http://www.guninski.com/read.html
[2]http://www.guninski.com/scrauto.html
Since he discovered these previous issues, maybe
Guninski has an explanation.
-- S.G.Masood __________________________________ Do you Yahoo!? Free Pop-Up Blocker - Get it now http://companion.yahoo.com/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.htmlReceived on Fri Dec 12 13:46:00 2003
This archive was generated by hypermail 2.1.8 : Fri Dec 12 2003 - 14:01:01 CST
Custom Search
