[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Microsoft's fix for URL username:password@ obfuscation

To: full-disclosure@lists.netsys.com
Subject: [Full-Disclosure] Microsoft's fix for URL username:password@ obfuscation
From: Feher Tamas <etomcat@freemail.hu>
Date: Wed, 28 Jan 2004 12:01:55 +0100 (CET)

>Microsoft plans to release a software update that removes support
>for handling user names and passwords in HTTP and HTTP with
>Secure Sockets Layer (SSL) or HTTPS URLs in Internet Explorer.

Security through mutility?

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: Re: [Full-Disclosure] OpenBSD 'pf' port (was FreeBSD heap to Linux)
Next by Date: [Full-Disclosure] [FLSA-2004:1207] Updated cvs resolves security vulnerability
Previous by thread: Re: [Full-Disclosure] Mydoom: perfect storm averted or just ahead?
Next by thread: [Full-Disclosure] [FLSA-2004:1207] Updated cvs resolves security vulnerability
Index(es):
- Date
- Thread