[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (by K-Gen).

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (by K-Gen).
From: Nick FitzGerald <nick@xxxxxxxxxxxxxxxxxxx>
Date: Fri, 21 Oct 2005 08:07:38 +1300

Mike Camden wrote:

> I thought this was by design since you may have a known url to go to but
> only after some form of validation has been passed.

IFF that is the case, then it is an extraordinarily brain-dead design, 
as it breaks the very critical "rule" that you should NOT surprise the 
user.  A URL link that is shown in the interface to go one place, but 
which goes somewhere else is fundamentally broken under that rule.

If this is by design, then it's another case of a feature that breaks 
Billy's admonition that security is to trump features, so should be 
fixed.

Regards,

Nick FitzGerald

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (by K-Gen).
  - From: K-Gen Gen
- Re: [Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (by K-Gen).
  - From: Mike Camden

Prev by Date: Re: [Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (by K-Gen).
Next by Date: RE: [Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (byK-Gen).
Previous by thread: Re: [Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (by K-Gen).
Next by thread: Re: [Full-disclosure] New (19.10.05) MS-IE Url Spoofing bug (by K-Gen).
Index(es):
- Date
- Thread