Concurrency-related vulnerabilities in browsers - expect problems

Good morning, "Fame-hungry sociopath torches cars, finds browser flaws WARSAW, Poland AP -- police are on a look out for a local adolescent vandal who continues to terrorize local IT workers in what appears to be a bizzare bid for fame. Larry Seltzer reports from the scene." Well, I just had to d...

MSIE:"SaveRef" turns Zone off

TITLEMSIE:"SaveRef" turns Zone off/TITLE digest MSIE: you can execute jscript in any zone by saving the reference of "NewWindow.location.assign". content after the "exp" section is not directly related to the flaw, so skip it if you are in a hurry; testedMSIEv6CN version IEXPLORE.EXE file version...

MSIE may download and run programs automatically - details

This posting briefly describes some technical details of the vulnerability discussed in the Bugtraq messages with the subjects "MSIE may download and run progams automatically" Dec 14 2001 and "File extensions spoofable in MSIE download dialog" Nov 26 2001. The flaw allows a malicious web site to...

Re: BrownOrifice can break firewalls! NOW MSIE

Hi, The same security hole, exists in MSIE too, with one restriction: url can't start with file:. But still the applet from outside site, can access you intranet servers including ftps and ALL sites you have access to. The demonstration of the bug is here: http://www.oltres.com/ms-bug/ Thanx,...