Web Application Security
Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: IE11 is not following CORS specification for local files
Oct 05 2016 07:54PM
Ricardo Iramar dos Santos (riramar gmail com)
I did a small improvement in this attack.
Using IE File API
attacker would be able to create a web page with the content below and
send to a victim.
A local file with the same content that I sent previously would be
created on down...
[ more ]
Copyright 2010, SecurityFocus