Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: [Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053])
Oct 02 2006 09:55PM
Paul Szabo (psz maths usyd edu au)
Brian Eaton <eaton.lists (at) gmail (dot) com [email concealed]> wrote:
> ... I just tested Apache 1.3.37 and Apache 2.2.3, and both specified a
> content-type header of "text/html; charset=iso-8859-1" for 404 responses ...
So, how "default" were your servers? On my own server (Debian package
apache2-common version 2.0.54-5sa...
[ more ]
Copyright 2010, SecurityFocus