Read:Major Web Browzer Vulnerability!!!
Results 1 to 4 of 4

Thread: Read:Major Web Browzer Vulnerability!!!

  1. #1
    Fastest Thing Alive s0nIc's Avatar
    Join Date
    Sep 2001
    Location
    Sydney
    Posts
    1,584

    Exclamation Read:Major Web Browzer Vulnerability!!!

    A malicious user can create a form which is submitted by the victim (automatically using Active Scripting or manually using Social Engineering). This form can cause a non- HTTP service to echo back JavaScript commands which in turn allow the malicious user to steal the cookie for that domain. There are more uses for this attack, other than just stealing cookies.


    Effects:
    Internet Explorer 6 and older versions
    Opera 6.0 and older versions


    Severity:
    Allows stealing of cookies, penetration of internal networks and other evil stuff.

    Author:
    Obscure^
    [ obscure@eyeonsecurity.net ]

    Vendor Status:
    Internet Explorer - Informed secure@microsoft.com and worked with them to release a patch. Should be out soon.
    Opera - Worked with the Opera team. A fix is due next release.


    Web:

    http://eyeonsecurity.net/papers/ - Extended HTML Form Attack


    Background.

    Many web browsers such as Internet Explorer allow forms to be submitted to non-HTTP services. Some non-HTTP services echo back the information sent, and the web browser renders the echo as an HTML page, regardless of the protocol behind the service.


    Problem.

    A malicious user can create a form which is submitted by the victim (automatically using Active Scripting or manually using Social Engineering). This form can cause a non-HTTP service to echo back JavaScript commands which in turn allow the malicious user to steal the cookie for that domain. There are more uses for this attack, other than just stealing cookies.


    Exploit Example.

    available at http://eyeonsecurity.net/advisories/showMyCookie.html




    Disclaimer.

    The information within this document may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties with regard to this information. In no event shall the author be liable for any consequences whatsoever
    arising out of or in connection with the use or spread of this information. Any use of this information lays within the user's responsibility.

  2. #2
    Senior Member
    Join Date
    Jan 2002
    Posts
    883

    Question No, don't say so.

    I can understand M$. But Opera as well. Dam%@# there goes the neighborhood. LOL Well at least Opera does'nt have to put out a fix every week or so. EhhHemm...(thinking MS here). Like someone elses browser does.....
    Thanks for the info.
    The COOKIE TUX lives!!!!
    Windows NT crashed,I am the Blue Screen of Death.
    No one hears your screams.


  3. #3
    Fastest Thing Alive s0nIc's Avatar
    Join Date
    Sep 2001
    Location
    Sydney
    Posts
    1,584
    Hahaha trust me.. this news scares me more than it scares you...
    I hope Bill and the makers of Opera releases the patch very soon..

  4. #4
    AntiOnline Senior Member
    Join Date
    Oct 2001
    Posts
    514
    Good heads up sonic! Possie points for you!
    [shadow]uraloony, Founder of Loony Services[/shadow]
    Visit us at
    [gloworange]http://www.loonyservices.com/[/gloworange]

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides