BugTraq
Internet Explorer Phishing mouseover issue Feb 16 2006 02:19PM
gandalf digital net (1 replies)
Re: Internet Explorer Phishing mouseover issue Feb 18 2006 03:34AM
Paul Szabo (psz maths usyd edu au)
Ken Hollis (aka Gandalf) wrote:

> Has anybody seen this before? I know that the mouseover issues ...
>
> [FORM action=http://malicious/stuff]
> [a href="https://trusted/site"]
> [INPUT ...][/a]

Does not seem to be a mouseover issue, but seems identical to

Internet Explorer/Outlook Express Restricted Zone Status Bar Spoofing
http://secunia.com/advisories/11273/

(known, unpatched, since 2004).

Cheers,

Paul Szabo psz (at) maths.usyd.edu (dot) au [email concealed] http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics University of Sydney Australia

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus