full-disclosure-uk January 2010 archive
Main Archive Page > Month Archives  > full-disclosure-uk archives
full-disclosure-uk: Re: [Full-disclosure] MouseOverJacking attac

Re: [Full-disclosure] MouseOverJacking attacks

From: T Biehn <tbiehn_at_nospam>
Date: Tue Jan 05 2010 - 14:53:28 GMT
To: Jeff Williams <jeffwillis30@gmail.com>


Hey MustLive!
If you read the HTML specification you can find all sorts of XSS attack vectors that people just assumed would be redundant to write entire articles on!

Here!
http://www.w3.org/TR/REC-html40/interact/scripts.html

-Travis

On Sun, Jan 3, 2010 at 10:29 PM, Jeff Williams <jeffwillis30@gmail.com> wrote:
> Thanks for your wishes MustDie;
>
> Do you consider yourself as an oz XSS ninja ?
>
> Did your C.V. ended in the OWASP trash bin ?
>
> And how the fuck you came up with a nickname like that ?
>
>
>
> Let us know, we truly give a shit about your life, and xss.
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-- FD1D E574 6CAB 2FAF 2921 F22E B8B7 9D0D 99FF A73C http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on http://pastebin.com/f6fd606da _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/