Topic awaiting preservation: yet another vulnerability in MSIE (Page 1 of 1) |
|
---|---|
Paranoid (IV) Inmate From: France |
posted 12-09-2003 21:48
Many already know the use of fake URLs like http://usernameassword@malicious_site.com to fool the users and make them believe they are going to a trusted site ( i.e: http://www.microsoft.com&session%124987f3a@ozoneasylum.com ). |
Paranoid (IV) Mad Scientist From: Somewhere over the rainbow |
posted 12-09-2003 21:58
The poster has demanded we remove all his contributions, less he takes legal action. |
Bipolar (III) Inmate From: Cold Sweden |
posted 12-09-2003 22:12 |
Paranoid (IV) Mad Scientist From: Somewhere over the rainbow |
posted 12-09-2003 22:14
The poster has demanded we remove all his contributions, less he takes legal action. |
Paranoid (IV) Inmate From: France |
posted 12-09-2003 22:41
That kind of vulnerability combined with a fake remake of a site can be used to steal some credit card numbers, paypal accounts ... |
Maniac (V) Inmate From: Seoul, Korea |
posted 12-10-2003 03:00
InI: I just tried your test page, but it didn't work in my browser (IE6/Win). The address bar simply displayed what I had typed into the text box. |
Paranoid (IV) Inmate From: France |
posted 12-10-2003 05:01
Suho1004: that's exactly what the vulnerability does. If you right click and look the actual location of the page, you'll see that the one displayed in MSIE's address bar stops at the 0x01 character. That way you can fool some visitors and make them believe they are surfing a gentle site while they actually are in a booby trap . |
Maniac (V) Inmate From: Seoul, Korea |
posted 12-10-2003 07:07
poi: |
Maniac (V) Mad Scientist From: :morF |
posted 12-10-2003 10:13
Suho: |
Bipolar (III) Inmate From: Loughborough, Leics. UK |
posted 12-10-2003 10:20
can't you get free web masking thingies anyway? i know the old cjb.net ones give you the option to mask every page on your site as www.???.cjb.net so i'm sure there are sites that let you msk anything on top... |
Maniac (V) Mad Scientist From: :morF |
posted 12-10-2003 12:28
Yes, but you couldn't get one that would mask your URL to an existing one, or one that would allow you to do harm like this would |
Paranoid (IV) Mad Scientist From: Somewhere over the rainbow |
posted 12-10-2003 13:43
The poster has demanded we remove all his contributions, less he takes legal action. |
Maniac (V) Inmate From: Seoul, Korea |
posted 12-10-2003 15:09
Skaarjj: No, he didn't call up Microsoft. How come nobody understands what I'm saying? quote:
|
Paranoid (IV) Inmate From: France |
posted 12-10-2003 15:26
Suho1004: After my rolling eyes, you get my tongue for not looking InI's script in details to see that he routed his test to the page I submitted in the first place. |
Paranoid (IV) Mad Scientist From: Somewhere over the rainbow |
posted 12-10-2003 16:02
The poster has demanded we remove all his contributions, less he takes legal action. |
Paranoid (IV) Inmate From: [s]underwater[/s] under-snow in Juneau |
posted 12-10-2003 16:43
Hmm.....maybe this is NOT a vulnerability . Perhaps it is a 'feature'. After all Mozilla has those really cool developer tools, Netscape has developer's sidebars available, so why not make IE hacker friendly....? I'm looking forward to the anonymous bulk-email feature. |
Maniac (V) Inmate From: Seoul, Korea |
posted 12-11-2003 01:05
quote:
|
Paranoid (IV) Inmate From: France |
posted 12-11-2003 01:41
Suho1004: Oops, I always forget there's some young people wandering in the asylum. |
Paranoid (IV) Inmate From: Mexico |
posted 12-11-2003 02:49
onmouseover="window.status='anything but the real url'; return true;" |
Paranoid (IV) Inmate From: Los Angeles |
posted 12-11-2003 04:38
Also as an added benefit to the hackers, to ensure they have a Merry Christmas, Microsoft will not be publishing a patch this month .... oops, nope they are patching oh wait ... it's a repeat patch? LOL! |
Maniac (V) Inmate From: Seoul, Korea |
posted 12-11-2003 05:34
Alevice: Like I said, that would work for hovering over the link, but the browser would still show the true url while loading the page. It would be easy to miss, though. |
Maniac (V) Inmate From: Florida |
posted 12-20-2003 19:53
Apache mod_rewrite module code: <IfModule mod_rewrite.c>
|
Maniac (V) Mad Scientist From: 100101010011 <-- right about here |
posted 12-20-2003 20:14
Here's an interesting one. |
Maniac (V) Mad Scientist From: 100101010011 <-- right about here |
posted 12-20-2003 21:40
Shit I'm gonna take this back. After reading the comments it looks like this patch is not ready for prime time. |