[« stealing a television show] [Main Index] [anti-fud »]
more IE exploits
05/06/2002
IE allows universal Cross Site Scripting
This bulletin from Thor Larholm ought to scare you, especially if you have a MS passport.
The patch that supposedly fixed this type of thing wasn't complete enough to really close the hole it seems.
There is a lot of worthwhile information in the links on Thor's page. I especially found value in the list of unpatched vulnerabilities.