http://milw0rm.com/exploits/5795
Should be fixed :/.
Critical bug
2 posts
• Page 1 of 1
by peterz » 14 Jun 2008 02:38
Thanks, it is "worked-around" in 2.8.7c.
It's an interesting problem, the way I.E. doesn't allow any safe way to put an argument on the command line escaped. (hint: Think difference between execv and system). It actually allows the URL leak out beyond one argv[] pointer, what a pain.
Another reason to switch to Firefox I guess.
It's an interesting problem, the way I.E. doesn't allow any safe way to put an argument on the command line escaped. (hint: Think difference between execv and system). It actually allows the URL leak out beyond one argv[] pointer, what a pain.
Another reason to switch to Firefox I guess.
-
peterz - Posts: 1035
- Joined: 09 Jun 2004 13:51
- Location: Australia
2 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 0 guests