Tuesday, May 09, 2006

WARNING - User Agent Script Vulnerability

Don't know if anyone has ever seen this script vulnerability before but it just happened to me and I almost shit myself.

Who would ever consider that pulling up your log analyzer summary page could fuck you over?

Luckily for me, it was just a simple redirect: "<SCRIPT>window.location='http://www.syncrisis.com'</script> (compatible; MSIE 6.0; Windows NT 5.1; SV1; iP-CMPQ-2003; .NET CLR 1.1.4322)"
These fuckers better watch out cause this is fucking BULLSHIT and you're on my shitlist now you cocksuckers.

Something new to add to the bot blocker and just bounce assholes that do this shit.

No comments: