[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] IE 0x01 Byte URL Spoofing Vulnerability[Scriptless PoC Exploit & Additional Details]

To: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] IE 0x01 Byte URL Spoofing Vulnerability[Scriptless PoC Exploit & Additional Details]
From: Piotr Bulczak <piotr.bulczak@pl.abb.com>
Date: Sat, 13 Dec 2003 12:08:47 +0100

> 2. SCRIPTING is NOT NECESSARY to exploit this vulnerability.
> A hex editor can be used to embed the 0x01 byte. See the attached
exploit.

Why hex editor? Just put &#001; code instead.

cheers,
Piotr


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] IE 0x01 Byte URL Spoofing Vulnerability[Scriptless PoC Exploit & Additional Details]
  - From: S G Masood <sgmasood@yahoo.com>

Prev by Date: RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
Next by Date: Re: [Full-Disclosure] A new TCP/IP blind data injection technique?
Previous by thread: [Full-Disclosure] IE 0x01 Byte URL Spoofing Vulnerability[Scriptless PoC Exploit & Additional Details]
Next by thread: [Full-Disclosure] UPDATED UnixWare 7.1.1 : Bind: cache poisoning BIND 8 prior to 8.3.7 and BIND 8.4.x prior 8.4.2
Index(es):
- Date
- Thread