BugTraq
Internet Explorer URL parsing vulnerability Dec 09 2003 06:15PM
John W. Noerenberg II (jwn2 qualcomm com) (1 replies)
Re: Internet Explorer URL parsing vulnerability Dec 10 2003 12:13AM
Pedro Castro (noupy mail telepac pt) (3 replies)
Re: Internet Explorer URL parsing vulnerability Dec 10 2003 07:39PM
William Stockall (wstockal compusmart ab ca)
Re: Internet Explorer URL parsing vulnerability Dec 10 2003 07:37PM
Tiago Pierezan Camargo (tiago telenova net)
Re: Internet Explorer URL parsing vulnerability Dec 10 2003 07:26PM
Andreas Plesner Jacobsen (apj mutt dk) (1 replies)
On Wed, Dec 10, 2003 at 12:13:57AM +0000, Pedro Castro wrote:
> >>From: <bugtraq (at) zapthedingbat (dot) com [email concealed]>
> >>To: bugtraq (at) securityfocus (dot) com [email concealed]
> >>Subject: Internet Explorer URL parsing vulnerability
> >>
> >>Internet Explorer URL parsing vulnerability
> >>Vendor Notified 09 December, 2003
> >>
> >># Vulnerability ##########
> >>There is a flaw in the way that Internet Explorer displays URLs in
> >>the address bar.
> >>
> >>By opening a specially crafted URL an attacker can open a page that
> >>appears to be from a different domain from the current location.
> >>
> >This exploit also applies to the Macintosh version of Explorer
> >v5.2.3(5815.1)
>
> It does also apply to Mozilla Firebird 0.7.

Not the Linux edition, perhaps only on Windows?

--
Andreas Plesner Jacobsen | Owe no man any thing...
| -- Romans 13:8

[ reply ]
Re: Internet Explorer URL parsing vulnerability Dec 11 2003 12:43AM
Charles Richmond (cmr iisc com) (1 replies)
Re: Internet Explorer URL parsing vulnerability (Yes, Mozilla too.) Dec 11 2003 06:31PM
netmask (netmask enZotech net)


 

Privacy Statement
Copyright 2010, SecurityFocus