Computer Security

Security Advisory: Re: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  MacOS X browsers files overwriting and scripts execution (multiple bugs)

  [Full-Disclosure] SSH URI handler remote arbitrary code execution

  Safari remote arbitrary code execution

  [Full-Disclosure] Vuln. MacOSX/Safari: Remote help-call, execute scripts

From:Christian Horchert <chorchert_(at)_veedev.de>
Date:17.05.2004
Subject:Re: [Full-Disclosure] iDEFENSE Security Advisory 05.12.04: Opera Telnet URI Handler File Creation/Truncation Vulnerability

Am 13.05.2004 um 17:16 schrieb Richard Johnson:
> Opera Telnet URI Handler File Creation/Truncation Vulnerability
>
> iDEFENSE Security Advisory 05.12.04
> www.idefense.com/application/poi/display?id=104&type=vulnerabilities
> May 12, 2004

This vulnerability exists under OSX with Safari, Firefox, OmniWeb,
IE, iCab, and TrailBlazer, too.

I also recognized, that Firefox "supports" telnet URIs as img and
script source (beside meta-tags, iframe etc.).


  Christian

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru