Slashdot Mirror


New URL Spoofing Bug in Pre-SP2 IE

An anonymous reader writes "According to Netcraft a new security flaw has been found in Microsoft Internet Explorer which makes it possible to spoof a URL with just some simple HTML code, by enclosing two URLs and a table within a single href tag. The user will be sent to one site, but the status bar will show a fake URL. The bug apparently affects IE and Outlook Express up to but not including SP2. Firefox and Konqueror seem unaffected."

7 of 266 comments (clear)

  1. Patch by Anonymous Coward · · Score: 3, Funny
    1. Re:Patch by Anonymous Coward · · Score: 5, Funny
  2. Re:OK, OK I will download Firefox by lightdarkness · · Score: 2, Funny

    FF, reformating the world, one windows box at a time.

  3. Goatse... by SILIZIUMM · · Score: 3, Funny

    Too bad the original goatse.cx is down, that could be fun. "Hey Jim, check that financial report!"... At least we have mirrors...

  4. Re:Come on people! by secolactico · · Score: 5, Funny

    That's nothing. *My* father installed SP2 against my recommendation, and the next day a burglar broke into his house and stole most of the silverware!

    Since installing firefox, nobody has broken into his house again.

    --
    No sig
  5. Re:Pre SP2? by dn15 · · Score: 3, Funny
    What does this mean for Windows 2000 users?
    It means they should get Firefox.
    ;)
  6. Re:Another argument for NOT rendering bad HTML by DeepHurtn! · · Score: 2, Funny

    Oh no...! Does this mean my browser would warn me every time I come to Slashdot?