MSIE->RefBack

2003-09-11T00:00:00
ID SECURITYVULNS:DOC:5097
Type securityvulns
Reporter Securityvulns
Modified 2003-09-11T00:00:00

Description

RefBack

[tested] Browser Ver { MS Internet Explorer: 6.0.2600.0000.xpclnt_qfe.021108-2107; Encryption: 128-bit; Patch:; Q810847; } (So, it's far from fully patched. it also works after applying the patch for "Using the backbutton in IE is dangerous") OS Ver: "Windows XP Cn ver"

[demo] http://www.safecenter.net/liudieyu/RefBack/RefBack-MyPage.HTM or http://umbrella.mx.tc ---> RefBack section ---> RefBack-MyPage file

[exp] refer to BackMyParent at UMBRELLA.MX.TC. another way to execute "[VictimWindow].history.back()": method caching attack.

[greetings] the Pull, dror, guninski, sandblad and "Friedrich L.Bauer". of course, mom and dad.

best wishes


from http://Umbrella.MX.TC on http://SafeCenter.NET