[9951] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

IE5 - same vulnerabilities, only some fixed

daemon@ATHENA.MIT.EDU (Most Psychoid)
Fri Mar 19 13:35:35 1999

Date: 	Fri, 19 Mar 1999 11:46:01 +0100
Reply-To: psychoid@GMX.NET
From: Most Psychoid <psychoid@GMX.NET>
To: BUGTRAQ@NETSPACE.ORG

Hello,

The new Microsoft Internet Explorer 5 (I checked Version: 5.00.0910.1309)
still allows Frame Spoofing and reading of local Files as described by
Georgi Guninski (see http://www.whitehats.com/guninski/read.html).

Another new feature named "AutoComplete" stores entries (which also may be
passwords). Just another new source for passwords which had not been saved
in IE 4.x.

The Crash-bugs seem to be removed. I could not crash my default installed
IE 5 using the known exploits.

So far,

psychoid

---
Sent through Global Message Exchange - http://www.gmx.net


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[9951] in bugtraq

IE5 - same vulnerabilities, only some fixed

daemon@ATHENA.MIT.EDU (Most Psychoid)Fri Mar 19 13:35:35 1999

daemon@ATHENA.MIT.EDU (Most Psychoid)
Fri Mar 19 13:35:35 1999