linear

[« stealing a television show] [Main Index] [anti-fud »]

more IE exploits

05/06/2002

IE allows universal Cross Site Scripting

This bulletin from Thor Larholm ought to scare you, especially if you have a MS passport.

The patch that supposedly fixed this type of thing wasn't complete enough to really close the hole it seems.

There is a lot of worthwhile information in the links on Thor's page. I especially found value in the list of unpatched vulnerabilities.


text, scripts and images copyright © 2001-2011 . All rights reserved.