Slashdot Mirror


New URL Spoofing Bug in Pre-SP2 IE

An anonymous reader writes "According to Netcraft a new security flaw has been found in Microsoft Internet Explorer which makes it possible to spoof a URL with just some simple HTML code, by enclosing two URLs and a table within a single href tag. The user will be sent to one site, but the status bar will show a fake URL. The bug apparently affects IE and Outlook Express up to but not including SP2. Firefox and Konqueror seem unaffected."

9 of 266 comments (clear)

  1. netscape 7.2 for win32 by Anonymous Coward · · Score: -1, Offtopic

    unaffected.

    the rumor I heard was that AOL is sunsetting development on netscape. Can anybody confirm?

    While 7.2 is stable, it's not FireFox, and it's not Mozilla.

    It's not even Opera.

    Yet another reason for us slashdotters to hate AOL.

  2. Right by Safety+Cap · · Score: 0, Offtopic
    We all know how you want to work for Microsoft when you graduate from high school, but Mrs. Phelps in Science said she wasn't going to pass you unless you turned in all your homework.

    Man, that's like 3, 2-page papers!!! Better use 1.75" spacing and 1.25" margins and 14 point type.

    --
    Yeah, right.
  3. Hey GNAA, by Anonymous Coward · · Score: -1, Offtopic

    I hope you guys don't mind me signing up your "Press contact" and website up for various things, including herpes support newsletters and assorted porn sites. I've only just started, too. Any sort of email newsletter or site trader I find I'm putting in your website and as many GNAA email addresses as possible. Since you idiots have failed to innovate in the realm of trolling, I find you guilty of sucking CmdrTaco's anus and therefore must pay. INNOVATE OR DIE, LOSERS.

    1. Re:Hey GNAA, by dhakbar · · Score: -1, Offtopic

      His post was funnier than yours.

  4. Just like /. by kuzb · · Score: 0, Offtopic

    Why are we ever talking about this? It has already been patched.

    --
    BeauHD. Worst editor since kdawson.
  5. Re:Goatse... by Justin205 · · Score: -1, Offtopic
    Too bad the original goatse.cx is down, that could be fun.
    What I want to know is how you know that it's down.
    --
    "Your effort to remain what you are is what limits you."
  6. Re:Goatse... by ExoticMandibles · · Score: -1, Offtopic
    You just said "Too bad the original goatse.cx is down".

    Remember, folks, think before you post!

    larry

  7. Re:Goatse... by Anonymous Coward · · Score: -1, Offtopic
  8. Re:Goatse... by damiam · · Score: -1, Offtopic
    There was a big fuss some time ago when some bitch complained to the .cx registrar and had it taken down. The story was on /. and a lot of other sites.

    goat.cx still works, though.

    --
    It's hard to be religious when certain people are never incinerated by bolts of lightning.