[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability

To: "ZATAZ.net" <exploits@xxxxxxxxx>
Subject: Re: [Full-disclosure] Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability
From: Jonathan Zdziarski <jonathan@xxxxxxxxxxxxxxxxxxx>
Date: Thu, 19 May 2005 08:09:51 -0400


On May 19, 2005, at 2:41 AM, ZATAZ.net wrote:

Hello,
http://stephan.com/widgets/zaptastic/

This only deals with the Safari auto-install issue, which I've said is known about already. Please read the advisory more thoroughly. I am addressing an authentication hijacking issue.

Jonathan

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability
  - From: Jonathan Zdziarski
- Re: [Full-disclosure] Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability
  - From: ph0enix
- Re: [Full-disclosure] Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability
  - From: ZATAZ.net

Prev by Date: Re: [Full-disclosure] Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability
Next by Date: Re: [Full-disclosure] Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability
Previous by thread: [Full-disclosure] Content detection in html payload with snort ?
Next by thread: Re: [Full-disclosure] Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability
Index(es):
- Date
- Thread