funsec mailing list archives

RE: Secunia Reports Another IE7 Flaw

From: Larry Seltzer <Larry () larryseltzer com>
Date: Wed, 25 Oct 2006 14:27:42 -0400

The Secunia demo didn't really work for me.  I've configured IE7 to

generate pop-ups as new tabs and the address bar has different
dimensions than their demo is expecting. 

Of course that's not the default. I tried it and the exploit seems to
depend on the exact layout of the window, and the "fake" address was
scrolled off some to the left. It's something, but not much.

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blog.eweek.com/blogs/larry%5Fseltzer/
Contributing Editor, PC Magazine
larryseltzer () ziffdavis com 

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Secunia Reports Another IE7 Flaw Fergie (Oct 25)
- RE: Secunia Reports Another IE7 Flaw Richard M. Smith (Oct 25)
  - RE: Secunia Reports Another IE7 Flaw Larry Seltzer (Oct 25)
- <Possible follow-ups>
- RE: Secunia Reports Another IE7 Flaw Gregory Hicks (Oct 25)
- RE: Secunia Reports Another IE7 Flaw Fergie (Oct 25)
  - Re: Secunia Reports Another IE7 Flaw Dude VanWinkle (Oct 25)
    - RE: Secunia Reports Another IE7 Flaw Larry Seltzer (Oct 25)
    - RE: Secunia Reports Another IE7 Flaw Larry Seltzer (Oct 25)