Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » How's your browsing security? » An IE Browser is EVEN exploitible on DSL Reports
Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Post a:
Post a:
Most people... »
« Am i safe, probably not.  

nil
Java Geek
join:2000-11-27

Host:
Webmasters and Dev..
Forum Feature Requ..

Re: An IE Browser is EVEN exploitible on DSL Repor

JavaScript is client side.. hence all the various little tricks you can do with it only work for the person viewing the site.. so yes.. someone could insert an iframe that will display contents of /prof.. but guess whose you will view? Your own.. and you can't view someone elses..
--
Life is too short to be boring
permalink · 2003-07-26 14:25:45 · Reply to this

Sarick
It's Only Logical
Premium
join:2003-06-03
USA
·FrontierNet Intern..

Re: An IE Browser is EVEN exploitible on DSL Repor

I would love to see both parties that debute over this some more.

One person says it's exploitible the other says it's not.

My problem is I can't argue with anyone I don't program Java Script.

A couple of people tend to think it's still open for debate.

I do miss your insite. After all it's my understanding that your head of this sites web design or have a lot of say on it's design and or performance.

Like I said before I try to lock down my system as much as possible. Having an exploit install something is rare but I don't want to deal with to much paranoid issues that could cause brain damage.

Most of the exploits IE has are because it's so inter twind with the OS. I bet there are still many hacks not found in the wild in IE.
permalink · 2003-07-26 14:36:38 · Print · Reply to this

nil
Java Geek
join:2000-11-27

Re: An IE Browser is EVEN exploitible on DSL Repor

Okay, sure, why not.. There's one way to about it.. See my new post in the other thread.
--
Life is too short to be boring
permalink · 2003-07-26 14:40:06 · Reply to this

Marilla
I Am My Own Arbiter
Premium
join:2002-12-06
Belpre, OH

Re: An IE Browser is EVEN exploitible on DSL Repor

I'm VERY busy this weekend, and as I noted in the thread, I've not used Javascript for much other than form validation and simply redirection of the browser... but when I get time, I'll work on a 'proof of concept' post in the forum you linked, NIL.

And btw, thank you for taking time out for this.. I, too, am very interested in the outcome since I run my own custom forum system myself; I thought I had taken care of a lot of malicious possible uses before... but we'll see

Perhaps someone will get to a 'proof of concept' before I do.. we'll just see.
permalink · 2003-07-26 15:25:34 · Print · Reply to this
Forums » How's your browsing security?Most people... »
« Am i safe, probably not.  

Tuesday, 24-Nov 12:55:55 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [95] New AT&T Ad Campaign Hits Back At Verizon
· [73] New Bill Takes Aim At Higher Verizon ETFs
· [30] Earthlink Suffers From Major E-mail Outage
· [30] AT&T Offers New Prepaid Wireless plans
· [28] Frontier Increases Modem Rental Fee
· [16] Vivendi In Way Of Comcast's NBC Desires
· [15] Senators Want ACTA Made Public
· [13] Charter Still Fighting With Creditors
· [11] FCC Broadband Problem List Omits 'No Competition,' FCC Itself
· [9] Time Warner Dallas Customers Get WiMax December 1
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· Big Bank Alternative to Bank of America? [General Questions]
· CTV & Canwest ask CRTC to order blocking of U.S. programs [TekSavvy]
· Climate Change Scandal Erupts After Email Hack. [Security]
· What to use while demonoid is down? [Filesharing Software]
· iNum and 911 [VOIP Tech Chat]
· Firearms: Ammo question. [General Questions]
· persistent connection to qw-in-f113.1e100.net on boot [Security]
· HELP - Structured Wire and Home Network [Home/Office setup photos]