Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: Phishing using IE7 local resource vulnerability Mar 15 2007 03:12PM
robert everythingeverything co uk
This appears to be mitigated in Vista by Protected Mode, which is on by default, and denies access to local resources. If people decide to disable UAC, they must accept the potential risks that come with it, such as this XSS attack. I appreciate that this is a valid risk for XP.
...

[ more ]  




 

Privacy Statement
Copyright 2009, SecurityFocus