[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Opening Intranets to attack by using Internet Explorer [paper]

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Opening Intranets to attack by using Internet Explorer [paper]
From: Cesar <cesarc56@xxxxxxxxx>
Date: Tue, 7 Apr 2009 14:30:26 -0700 (PDT)

Hi

I just released a new paper:

Opening Intranets to attack by using Internet Explorer

Abstract
This document covers the topic of hacking Intranet websites through various 
unconventional means. Technical details shed light on the impact of default 
security configuration settings within Internet Explorer can be leveraged to 
attack internal Intranet websites remotely (from the Internet as well as remote 
users on the same LAN segment).

http://nomoreroot.blogspot.com/2009/04/opening-intranets-to-attacks-by-using.html


Enjoy.

Cesar.


      

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] [USN-754-1] ClamAV vulnerabilities
Next by Date: [Full-disclosure] [SECURITY] [DSA 1764-1] New tunapie packages fix several vulnerabilities
Previous by thread: [Full-disclosure] [USN-754-1] ClamAV vulnerabilities
Next by thread: [Full-disclosure] [SECURITY] [DSA 1764-1] New tunapie packages fix several vulnerabilities
Index(es):
- Date
- Thread