[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] XSS vulnerability at Symantec.com #2
- To: full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: Re: [Full-disclosure] XSS vulnerability at Symantec.com #2
- From: "Pigrelax" <Pigrelax@xxxxxxxxx>
- Date: Fri, 4 Aug 2006 21:05:51 +0400 (MSD)
>ok, but want do you want to do with a stolen session on symantec ? get
>free AV ?
Are you really known that it can be used only for stolen session?
XSS may use for fishing, farming, XSS proxy and other..
Can we trust security company, which can not protect your corporate Web site?
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/