Search the archives!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-disclosure] Stealing Browser History Without Using JavaScript
- From: pdp.gnucitizen at googlemail.com (pdp (architect))
- Subject: [Full-disclosure] Stealing Browser History Without Using JavaScript
- Date: Wed, 28 Feb 2007 23:05:39 +0000
I've created a generic scanner based on this technique that everybody can use. It is located here: http://www.gnucitizen.org/projects/noscript-hscan/ RSnake, great job! On 2/28/07, RSnake <rsnake at shocking.com> wrote: > > In case anyone is interested, I was able to port the old CSS > history hacking stuff that Jeremiah Grossman originally found to a > version that does not require JavaScript to fire using images and > conditional logic built into CSS using a:visited and display attributes. > It works in both IE7.0 and Firefox 2.0.0.2. Details at the link below: > > http://ha.ckers.org/blog/20070228/steal-browser-history-without-javascript/ > > -RSnake > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- pdp (architect) | petko d. petkov http://www.gnucitizen.org
- References:
- [Full-disclosure] PDF Strikes Back
- From: pdp (architect)
- [Full-disclosure] Stealing Browser History Without Using JavaScript
- From: RSnake
- [Full-disclosure] PDF Strikes Back
- Prev by Date: [Full-disclosure] [ MDKSA-2007:050 ] - Updated Firefox packages fix multiple vulnerabilities
- Next by Date: [no subject]
- Previous by thread: [Full-disclosure] New Variant of the Storm Virus
- Next by thread: [Full-disclosure] [USN-428-1] Firefox vulnerabilities
- Index(es):