[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Is there a 0day vuln in this phisher's site?

To: "'Andrew Clover'" <and-bugtraq@xxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] Is there a 0day vuln in this phisher's site?
From: "Larry Seltzer" <larry@xxxxxxxxxxxxxxxx>
Date: Sun, 30 Jan 2005 07:43:25 -0500

>>Yep, this is a straight copy of my example posted here:
>>http://www.doxdesk.com/personal/posts/bugtraq/20030713-ie
>>I have seen a few other phish in the wild using this exploit too.

So have I. Not to diminish the importance of the attack, but this
assumes the default placement of Address Bar if I'm not mistaken, so if
the user changes their toolbar layout the popup will give itself away,
correct? 

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blog.ziffdavis.com/seltzer
larryseltzer@xxxxxxxxxxxxx 


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Is there a 0day vuln in this phisher's site?
  - From: Thierry Zoller
- Re: [Full-Disclosure] Is there a 0day vuln in this phisher's site?
  - From: Andrew Clover

References:
- Re: [Full-Disclosure] Is there a 0day vuln in this phisher's site?
  - From: Andrew Clover

Prev by Date: Re: [Full-Disclosure] Is there a 0day vuln in this phisher's site?
Next by Date: Re: [Full-Disclosure] Is there a 0day vuln in this phisher's site?
Previous by thread: Re: [Full-Disclosure] Is there a 0day vuln in this phisher's site?
Next by thread: Re: [Full-Disclosure] Is there a 0day vuln in this phisher's site?
Index(es):
- Date
- Thread