[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Hotmail and Windows Live Mail XSS Vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Hotmail and Windows Live Mail XSS Vulnerabilities
From: "HASEGAWA Yosuke " <yosuke.hasegawa@xxxxxxxxx>
Date: Wed, 8 Nov 2006 10:56:18 +0900

Hi.

On 3 Nov 2006 15:39:02 -0000, applesoup@xxxxxxxxx <applesoup@xxxxxxxxx> wrote:

Hotmail's filter identifies "expression()" syntax in a CSS attribute. According 
to Hasegawa Yosuke's


The term "url" in CSS is also widely acceptable in IE6
such as fullwidth "URL" (U+FF35, U+FF32, U+FF2C),
or some Unicode letters (U+0280, U+029F).

More details for
https://www.webappsec.jp/modules/bwiki/index.php?IE%A4%CEexpression%A4%C8url

Regards,
--
HASEGAWA Yosuke
   yosuke.hasegawa@xxxxxxxxx

References:
- Hotmail and Windows Live Mail XSS Vulnerabilities
  - From: applesoup

Prev by Date: TSRT-06-13: HP OpenView Client Configuration Manager Device Code Execution Vulnerability
Next by Date: Abarcar Realty Portal [injection sql]
Previous by thread: Hotmail and Windows Live Mail XSS Vulnerabilities
Next by thread: Advanced Guestbook 2.3.1 (Admin.php) Remote File Include
Index(es):
- Date
- Thread