BugTraq
Back to list
|
Post reply
Re: Microsoft ISA Server HTTP error handler XSS (TL#007)
Jul 19 2003 02:07PM
http-equiv (at) excite (dot) com [email concealed] (1 malware com)
>
> <A href="http://%09%09%09%09%09%09%09
> 09www.malware.com">http://www.microsoft.com</A>
The following will represent a true status and a false destination:
<A href="http://www.microsoft.com%09%09%09@%09%09%09%09%09%09
09www.malware.com">http://www.microsoft.com</A>
--
http://www.malware.com
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
>
> <A href="http://%09%09%09%09%09%09%09
> 09www.malware.com">http://www.microsoft.com</A>
The following will represent a true status and a false destination:
<A href="http://www.microsoft.com%09%09%09@%09%09%09%09%09%09
09www.malware.com">http://www.microsoft.com</A>
--
http://www.malware.com
[ reply ]