Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
RE: URI handling woes in Acrobat Reader, Netscape, Miranda, Skype
Oct 05 2007 07:54PM
Roger A. Grimes (roger banneretcs com)
[Disclosure: I work for Microsoft. But this is my opinion, not Microsoft's]
If I click on the test link in IE 7, by itself, it does not have the vulnerability.
The applications in question are accepting abitrary input and not validating correctly.
How is that a Microsoft or Windows problem?
[ more ]
Copyright 2010, SecurityFocus