Re: [SC-L] SC-L Digest, Vol 3, Issue 73

2007-04-09 Thread Frederik De Keukelaere
a security point of view. Brian Frederik --- Frederik De Keukelaere, Ph.D. Post-Doc Researcher IBM Research, Tokyo Research Laboratory___ Secure Coding mailing list (SC-L) List information, subscriptions, etc -

Re: [SC-L] JavaScript Hijacking

2007-04-06 Thread Frederik De Keukelaere
a way to achieve this in IE. We tried several things such as replacing Array and Object constructor as well as as overriding eval, neither of which worked. Do you have any suggestions about how to port this attack to IE? Btw, thanks for the papers. Kind Regards, Fred --- Frederik De Keukelaere