[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity

To: <full-disclosure@lists.netsys.com>
Subject: RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
From: "Mortis" <m0rtis@adelphia.net>
Date: Thu, 11 Dec 2003 18:45:32 -0500

> Using internet explorer, you can also put 
> http://whateverhere@google.com and
> that will take you to google. It only matters 
> what you put after the @ sign.
> I noticed that one day while putting in my email 
> address in for hotmail. 

J,

Check out 3.1 in this doc.  

http://www.faqs.org/rfcs/rfc1738.html

I haveto clean the beeeeer off my keyyyyboard.

:)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
  - From: "Bill Royds" <full-disclosure@royds.net>

References:
- RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
  - From: jbruce@unitedscience.com

Prev by Date: Re: [Full-Disclosure] sharing ssh session
Next by Date: RE: [Full-Disclosure] Security....hmmmmm
Previous by thread: RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
Next by thread: RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
Index(es):
- Date
- Thread