[EMAIL PROTECTED] wrote:
+ *) SECURITY: CVE-2008-0005 (cve.mitre.org)
I thought we concur that (short of direct html injection in the page's <head>) the browser misdetection of UTF-7, contrary on it's face to RFC2616, was a client specific problem? If so, this is a "related to CVE-2008-0005" footnote, not the topic. Bill
