BugTraq
Back to list
|
Post reply
IE remote code execution
Oct 18 2003 10:15PM
Marcin Ulikowski (r3b00t tx pl)
(1 replies)
Re: IE remote code execution
Oct 20 2003 06:53PM
Jouko Pynnonen (jouko iki fi)
On Sun, Oct 19, 2003 at 12:15:39AM +0200, Marcin Ulikowski wrote:
> Header("Content-Disposition: inline; filename=readme.txt%00code.exe");
This is not new, I reported this in 2001:
http://msgs.securepoint.com/cgi-bin/get/bugtraq0201/132.html
--
Jouko Pynnönen http://iki.fi/jouko/
jouko (at) iki (dot) fi [email concealed]
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
On Sun, Oct 19, 2003 at 12:15:39AM +0200, Marcin Ulikowski wrote:
> Header("Content-Disposition: inline; filename=readme.txt%00code.exe");
This is not new, I reported this in 2001:
http://msgs.securepoint.com/cgi-bin/get/bugtraq0201/132.html
--
Jouko Pynnönen http://iki.fi/jouko/
jouko (at) iki (dot) fi [email concealed]
[ reply ]