[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability

To: Full-Disclosure <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability
From: Christian Horchert <chorchert@xxxxxxxxx>
Date: Mon, 17 May 2004 04:56:52 +0200

Am 13.05.2004 um 17:16 schrieb Richard Johnson:

Opera Telnet URI Handler File Creation/Truncation Vulnerability
iDEFENSE Security Advisory 05.12.04
www.idefense.com/application/poi/display?id=104&type=vulnerabilities
May 12, 2004


This vulnerability exists under OSX with Safari, Firefox, OmniWeb,
IE, iCab, and TrailBlazer, too.

I also recognized, that Firefox "supports" telnet URIs as img and
script source (beside meta-tags, iframe etc.).

Christian

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability
  - From: Richard Johnson

Prev by Date: RE: [Full-Disclosure] Support the Sasser-author fund started
Next by Date: RE: [Full-Disclosure] Support the Sasser-author fund started
Previous by thread: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability
Next by thread: [Full-Disclosure] Support the Sasser-author fund started
Index(es):
- Date
- Thread