https://bugzilla.wikimedia.org/show_bug.cgi?id=26059
--- Comment #21 from Derk-Jan Hartman <[email protected]> 2012-02-25 20:37:46 UTC --- The problem is that IE6 will treat everything that has <head in the first several bytes as HTML. That means that if someone uploads a specifically crafted KML file and an unsuspecting IE6 user downloads it, that the machine of the IE6 user can be compromised. Our IE6 content filter protects against the uploading of any content that would trigger any of the 15 or so strings that will convince IE6 that something is HTML, even though it isn't. So uploading a JPEG with <head in the EXIF at the start of the file, would also trigger the filter and not allow you to upload that file. Unfortunately KML will always trigger the filter. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
