Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Multiple Browsers Frame Injection Vulnerability

  • 01-07-2004 12:13PM
    #1
    Capt'n Midnight
    Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 95,456 Mod ✭✭✭✭


    IE 6 link - http://secunia.com/advisories/11966/
    http://secunia.com/product/11/ - for the other 53 IE6 advisories

    For those not useing IE6 read on - opera/mozilla etc.

    http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/

    DESCRIPTION:
    A 6 year old vulnerability has been discovered in multiple browsers,
    allowing malicious people to spoof the content of websites.

    The vulnerability has been confirmed in the following browsers:
    * Opera 7.51 for Windows
    * Opera 7.50 for Linux
    * Mozilla 1.6 for Windows
    * Mozilla 1.6 for Linux
    * Mozilla Firebird 0.7 for Linux
    * Mozilla Firefox 0.8 for Windows
    * Netscape 7.1 for Windows
    * Internet Explorer for Mac 5.2.3
    * Safari 1.2.2
    * Konqueror 3.1-15redhat

    Other versions may also be affected.

    The vulnerability also affects Internet Explorer:
    SA11966

    SOLUTION:
    Do not browse untrusted sites while browsing trusted sites.

    The following browsers are not affected:
    * Mozilla Firefox 0.9 for Windows
    * Mozilla Firefox 0.9.1 for Windows
    * Mozilla 1.7 for Windows
    * Mozilla 1.7 for Linux

    VERIFY ADVISORY:
    http://secunia.com/advisories/11978/ - not IE6
    http://secunia.com/advisories/11966/ - IE6


Advertisement