[Dshield] New/Old Exploits just posted to Secunia

Thor Larholm thor at pivx.com
Tue Jun 8 23:39:57 GMT 2004


Too bad that the solution is not to disable scripting, as Secunia
suggests.

It is still possible to use this vulnerability even with scripting
disabled in the Internet Zone. You have to lockdown the My Computer zone
to mitigate against this vulnerability.



Regards

Thor Larholm
Senior Security Researcher
PivX Solutions
24 Corporate Plaza #180
Newport Beach, CA 92660
http://www.pivx.com
thor at pivx.com
Stock symbol: (PIVX)
Phone: +1 (949) 231-8496
PGP: 0x5A276569
6BB1 B77F CB62 0D3D 5A82 C65D E1A4 157C 5A27 6569

PivX defines a new genre in Desktop Security: Proactive Threat
Mitigation. 
<http://www.pivx.com/qwikfix>


-----Original Message-----
From: Paul Marsh [mailto:pmarsh at nmefdn.org] 
Sent: Tuesday, June 08, 2004 9:05 AM
To: General DShield Discussion List
Subject: [Dshield] New/Old Exploits just posted to Secunia


http://secunia.com/advisories/11793/

_______________________________________________
list mailing list
list at lists.dshield.org
To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list



More information about the list mailing list