[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: [Full-disclosure] Internet Explorer drag&drop 0day

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re[2]: [Full-disclosure] Internet Explorer drag&drop 0day
From: Thierry Zoller <Thierry@xxxxxxxxx>
Date: Thu, 16 Feb 2006 13:50:45 +0100

Dear Markus,

M> I think I understand now. You did it for the `shock` effect.
Hmm, you did not understand. I'll make it a bit more clear :

[1] Harden system with a tool
[2] proof that hardening was successfull through a PoC that
    doesn't work any longer.

I hope this is more clear, in case not, and should you still feel that
using  mouse_over() was a so shockingly approach, I invite you
to take further explanations off this list and I welcome you to
email me as most full disclosure readers are aware of ..well..
the theory behind full disclosure.

--
http://secdev.zoller.lu
Thierry Zoller
Fingerprint : 5D84 BFDC CD36 A951 2C45  2E57 28B3 75DD 0AC6 F1C7

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- Re: [Full-disclosure] Internet Explorer drag&drop 0day
  - From: Markus

Prev by Date: [Full-disclosure] BMP WMPlayer vulnerability
Next by Date: Re: [Full-disclosure] Internet Explorer drag&drop 0day
Previous by thread: Re: [Full-disclosure] Internet Explorer drag&drop 0day
Next by thread: Re: [Full-disclosure] Internet Explorer drag&drop 0day
Index(es):
- Date
- Thread