[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] XSS vulnerabilities in 34 millions flash files

To: Marko Jakovljevic <wizardx86@xxxxxxxxx>
Subject: Re: [Full-disclosure] XSS vulnerabilities in 34 millions flash files
From: Valdis.Kletnieks@xxxxxx
Date: Tue, 12 Jan 2010 12:29:04 -0500

On Tue, 12 Jan 2010 18:56:53 +0200, Marko Jakovljevic said:
> Firefox automatically filters unsafe XSS 

I wasn't aware that Firefox was able to look inside Flash files and flag
the embedded Javascript for unsafe XSS.  When did they add *that* feature?

Attachment: pgpAgYXtwzRSS.pgp
Description: PGP signature

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] XSS vulnerabilities in 34 millions flash files
  - From: MustLive
- Re: [Full-disclosure] XSS vulnerabilities in 34 millions flash files
  - From: Jeff Williams
- Re: [Full-disclosure] XSS vulnerabilities in 34 millions flash files
  - From: Marko Jakovljevic

Prev by Date: Re: [Full-disclosure] XSS vulnerabilities in 34 millions flash files
Next by Date: Re: [Full-disclosure] MacOS X 10.5/10.6 libc/strtod(3) buffer overflow
Previous by thread: Re: [Full-disclosure] XSS vulnerabilities in 34 millions flash files
Next by thread: Re: [Full-disclosure] XSS vulnerabilities in 34 millions flash files
Index(es):
- Date
- Thread