just wanted to say, I'm very happy that the CSS attacks are getting so much publicity now a days! We lost a lot of cool tricks like these when http://sla.ckers.org died, but I hope a read only version will come back one day. @RSnake
huh? as far as I can tell, this attack still requires custom fonts for the ligatures stuff?
-
-
the attack can be performed by just abusing the fact the length of "12" is different from "11" in different fonts.
-
(note there is a chance
@SecurityMB means a different attack :-) - but he references my blogpost so I assume he means the same thing. - 4 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.