Slashdot Mirror


New URL Spoofing Bug in Pre-SP2 IE

An anonymous reader writes "According to Netcraft a new security flaw has been found in Microsoft Internet Explorer which makes it possible to spoof a URL with just some simple HTML code, by enclosing two URLs and a table within a single href tag. The user will be sent to one site, but the status bar will show a fake URL. The bug apparently affects IE and Outlook Express up to but not including SP2. Firefox and Konqueror seem unaffected."

5 of 266 comments (clear)

  1. Lol, Mac fanboys have it too by Xenu+Xenu+Xenu · · Score: 0, Flamebait

    As usual on Slashot, truth takes a back seat to MS bashing

  2. Spoof doesnt work for me by Anonymous Coward · · Score: 0, Flamebait

    Doesnt work for me. IE6 with Windows XP SP2. The status bar shows "www.google.com" and that's where it sends me.

    Whoever said this affects all versions of IE clearly jumped the gun and needs to re-evaluate. When will the apology and retraction be issued? Will it make the front page on Slashdot?

  3. Re:Come on people! by Anonymous Coward · · Score: -1, Flamebait

    With idiots like you not making IT strategy decisions, companies have a chance to succeed.

  4. Re:In other news ... by Anonymous Coward · · Score: -1, Flamebait

    The moderator that set you as troll is doing a great diservice to slashdot. Lately this site has gone from a reliable source of information to a one-sided disillusioned source of disinformation. I cannot rely on this site any longer to be objective. The /. community is staining the great efforts of the open source community by losing objectivity. The CIO and CTO of my organization have "given ./" a try lately on my request only to laugh it off because of one-sided arguments and panic-inducing shallow headlines like this.

  5. In other news... by ArchieBunker · · Score: -1, Flamebait

    Redhat 5.2 and Irix 6.5.11 are vulnerable to remote root exploits. Wow old unpatched software has bugs, imagine that. You can't blame microsoft for people not upgrading.

    --
    Only the State obtains its revenue by coercion. - Murray Rothbard