Links

Lists

Latest Updates

Ruby On Rails List
Python list
Advanced Java
The JavaScript List
Apache Users
Full Disclosure
Linux Security

Search the archives!
Having a development problem? Ask eDevelopment.org forums!

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability

  • From: lcamtuf at dione.ids.pl (Michal Zalewski)
  • Subject: [Full-disclosure] Advisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability
  • Date: Fri, 23 Feb 2007 22:59:35 +0100 (CET)
On Fri, 23 Feb 2007, Stefan Esser wrote:

> Proof of Concept:
>
>    The Hardened-PHP Project is not going to release a proof of concept
>    exploit for this vulnerability.

...because pretty much no exploit is needed. Scary. Good catch.

/mz