BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: [Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]) Oct 02 2006 09:55PM
Paul Szabo (psz maths usyd edu au)
Brian Eaton <eaton.lists (at) gmail (dot) com [email concealed]> wrote:

> ... I just tested Apache 1.3.37 and Apache 2.2.3, and both specified a
> content-type header of "text/html; charset=iso-8859-1" for 404 responses ...

So, how "default" were your servers? On my own server (Debian package
apache2-common version 2.0.54-5sa...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus