According to Heise (http://www.heise.de/newsticker/data/dab-19.12.03-002/)
The Openware.org IE fix introduces new flaws : - The buffer to copy URL's is limited to 256 bytes - Larger strings produce a buffer overflow, with possibility to overwrite the stack. BoF Test : http://www.heise.de/security/dienste/browsercheck/demos/ie/e5_18.shtml (at the bottom, link entitled "TEST DES PATCHES") -- Best regards, Thierry mailto:[EMAIL PROTECTED] _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
