[FoRK] Why AJAX? ActiveX is turned off

Justin Mason jm
Thu Oct 13 23:55:56 PDT 2005


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Bill Humphries writes:
> 
> On Oct 13, 2005, at 10:53 PM, Wilkin, Kurt wrote:
> 
> > Leads to the first(?) javascript-transported worm in the wild,
> > loose on the Fox owned community site 'myspace'.
> 
> Something similar was done on Live Journal a few months back.
> 
> The fault doesn't lie with JavaScript, but with not sterilizing user  
> input.

It *is* an interesting concept though -- an XSS worm.
Did the LJ one "infect" in a worm-like fashion, too?

- --j.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Exmh CVS

iD8DBQFDT1VSMJF5cimLx9ARAtiNAJ9shtrzR4I4f2XXI7Ex4Ys4t1SU2ACfc5Su
nDh/wtBO20vZP4dqcNznY8s=
=Q+n6
-----END PGP SIGNATURE-----



More information about the FoRK mailing list