-
New IE vulnerability !!!
A malicious user can create a form which is submitted by the victim (automatically using Active Scripting or manually using Social Engineering). This form can cause a non-HTTP service to echo back JavaScript commands which in turn allow the malicious user to steal the cookie for that domain. There are more uses for this attack, other than just stealing cookies.
Read more at www.xatrix.org
Thanks!!
-
Keep it up kid and your going to get your butt kicked out of here.
You only need to post once.
-
um...DjM...I seem to be a bit out of the loop here...what has Kobras been doing that deserves that comment?
Please pardon my ignorance in this matter
-
I agree. He posted once, and did a good post. I see no problem with what he did and I am behind you Kezil.
-
I agree....he sometimes double posts but not on this thread. He always tries to stay on topic also..as in security related posts..lets not discourage someone because they have made a mistake or two in the past.
KOBBRAS..good job and thanks for the heads up
-
good post, kobbras
rgds
de
-
I hate to bring this back out of the archives but I'm going to agree with DJM. This has been posted 2 or 3 times already. Perhaps there are still copies of the other IE vulnerabilty posts floating around here somewhere or perhaps JP deleted them. I'd have a quick look but I've got to get my sorry ass to work!
KOBBRAS use to post numerous xatrix posts on alt.2600.hackerz untill someone pointed out that ENOUGH IS ENOUGH! We all know where xatrix is and alot of us already have a quick look there before coming to AO.
As I said this morning, KOBBRAS, if you have some kinda crazy addiction with cut and pasting xatrix articles at least add your own commentary at the end...
Just a suggestion....
-
Here we go. Just to back DJM and myself up, you can find two of the exact same threads HERE and HERE. There are a few more but I couldn't be bothered finding them........
-
Thanks Conf1rm3d_kill, I knew I wasn't crazy. When a first replied to this post, it was his third in a row and he/she did the same thing with a BlackIce post. It was just getting a little annoying.
-
Hm, i trying to post first some security news guys, and I apologize everybody if I post some threads "after" someone else with same theme, beceause it is not attentionly.Really it isnt...