Bugtraq mailing list archives
Re: Internet Explorer URL parsing vulnerability
From: Andreas Plesner Jacobsen <apj () mutt dk>
Date: Wed, 10 Dec 2003 20:26:22 +0100
On Wed, Dec 10, 2003 at 12:13:57AM +0000, Pedro Castro wrote:
From: <bugtraq () zapthedingbat com> To: bugtraq () securityfocus com Subject: Internet Explorer URL parsing vulnerability Internet Explorer URL parsing vulnerability Vendor Notified 09 December, 2003 # Vulnerability ########## There is a flaw in the way that Internet Explorer displays URLs in the address bar. By opening a specially crafted URL an attacker can open a page that appears to be from a different domain from the current location.This exploit also applies to the Macintosh version of Explorer v5.2.3(5815.1)It does also apply to Mozilla Firebird 0.7.
Not the Linux edition, perhaps only on Windows? -- Andreas Plesner Jacobsen | Owe no man any thing... | -- Romans 13:8
Current thread:
- Internet Explorer URL parsing vulnerability bugtraq (Dec 09)
- Re: Internet Explorer URL parsing vulnerability Nick FitzGerald (Dec 10)
- Re: Internet Explorer URL parsing vulnerability nesumin (Dec 23)
- <Possible follow-ups>
- Re: Internet Explorer URL parsing vulnerability soulshok (Dec 09)
- Message not available
- Re: Internet Explorer URL parsing vulnerability Eric "MightyE" Stevens (Dec 09)
- Message not available
- Internet Explorer URL parsing vulnerability John W. Noerenberg II (Dec 09)
- Re: Internet Explorer URL parsing vulnerability Pedro Castro (Dec 10)
- Re: Internet Explorer URL parsing vulnerability William Stockall (Dec 10)
- Re: Internet Explorer URL parsing vulnerability Andreas Plesner Jacobsen (Dec 10)
- Re: Internet Explorer URL parsing vulnerability Charles Richmond (Dec 11)
- Re: Internet Explorer URL parsing vulnerability Tiago Pierezan Camargo (Dec 10)
- Re: Internet Explorer URL parsing vulnerability Pedro Castro (Dec 10)