[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Forward:FullDisclosure/IE - Possible Address Spoofing

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Forward:FullDisclosure/IE - Possible Address Spoofing
From: Liu Die Yu <liudieyu@xxxxxxxxxxxxx>
Date: Fri, 23 Jul 2004 08:36:40 +0800

----- SUBJ: FullDisclosure: multiple web browsers, multiple bugs - onUnload and location.href FROM: Rudolf Polzer (divzero_at_gmail.com) URL : http://seclists.org/lists/fulldisclosure/2004/Jul/1001.html DEMO: http://www.informatik.uni-frankfurt.de/~polzer/rbiclan/location -----

after i clicked "Google" on the page, address field of IE was faked - on ie6.sp1.up2date running on winxp.home.en.up2date

just got it at iebug.com today.

liudieyu
liudieyu AT umbrella D0T name

Prev by Date: MDKSA-2004:071 - Updated samba packages fix vulnerability in SWAT, samba-server.
Next by Date: [SECURITY] [DSA 533-1] New courier packages fix cross-site scripting vulnerability
Previous by thread: MDKSA-2004:071 - Updated samba packages fix vulnerability in SWAT, samba-server.
Next by thread: RE: Forward:FullDisclosure/IE - Possible Address Spoofing
Index(es):
- Date
- Thread