Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Bofra/IFrame Exploits Update - Internet Security | DShield SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Bofra/IFrame Exploits Update
Update on Bofra/IFrame Exploits

We are still in the process of notifying sites that are hosting the exploit. We still encourage users to consider using another browser, other than IE6, until a patch for this is released by Microsoft. Windows XP SP2 is reported as not being vulnerable, and to this point we have nothing contrary.


Joe Stewart has an excellent writeup of the IFRAMES exploit, and should be read by users and admins both. Excellent piece of work, thank you Joe.



http://www.lurhq.com/iframeads.html

Tony Carothers

Handler on Duty

(With help from Patrick Nolan to navigate through the cloud cover)
Tony

150 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!