Threat Level: green Handler on Duty: Yee Ching Tok

SANS ISC: Bofra/IFrame Exploits Update - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Bofra/IFrame Exploits Update
Update on Bofra/IFrame Exploits

We are still in the process of notifying sites that are hosting the exploit. We still encourage users to consider using another browser, other than IE6, until a patch for this is released by Microsoft. Windows XP SP2 is reported as not being vulnerable, and to this point we have nothing contrary.

Joe Stewart has an excellent writeup of the IFRAMES exploit, and should be read by users and admins both. Excellent piece of work, thank you Joe.

Tony Carothers

Handler on Duty

(With help from Patrick Nolan to navigate through the cloud cover)

150 Posts
ISC Handler
Nov 21st 2004

Sign Up for Free or Log In to start participating in the conversation!