BugTraq
Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous Jan 03 2007 10:24PM
Amit Klein (aksecurity gmail com) (1 replies)
Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous Jan 03 2007 10:33PM
pdp (architect) (pdp gnucitizen googlemail com) (1 replies)
Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous Jan 04 2007 12:00AM
bugtraq cgisecurity net (1 replies)
A slashdot user suggested the following

"One possible work around on the server side:
Direct your web server to serve .pdf files as mime type "application/octet"
That way the files will be saved to disk instead of opening in the browser plug in."

URL:
http://it.slashdot.org/comments.pl?sid=214868&threshold=1&commentsort=0&
mode=thread&cid=17450834

This may cause undesired effects on certain browsers on the otherhand.

- Robert
http://www.cgisecurity.com/ Website Security news, and more
http://www.cgisecurity.com/index.rss [RSS Security Feed]

[ reply ]
RE: [WEB SECURITY] Universal XSS with PDF files: highly dangerous Jan 04 2007 04:42PM
Martin O'Neal (martin oneal corsaire com)


 

Privacy Statement
Copyright 2010, SecurityFocus