BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Survey: "MIME/Content-Type-Sniffing" Issues in Image Uploads in Forum Scripts May 28 2009 08:04AM
Jacques Copeau (jacquescopeau googlemail com)
Survey: "MIME/Content-Type-Sniffing" Issues in Image Uploads in Forum Scripts
Author: Jacques Copeau

Abstract
====================================================
Internet Explorer, especially versions 7 and 6, can be tricked to treat images
as html, opening XSS vulnerabilities in software that all...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus