Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
From: Jim Race <caferace@well.com>
Date: Thu Dec 11 2003 - 12:36:41 CST
Date: Thu Dec 11 2003 - 12:36:41 CST
Jim Race wrote:
>> http://petard.freeshell.org/ms-announce.html
>
>
> Mozilla 1.5:
>
> Displays in status bar, as well as takes user to http://www.microsoft.com
>
> Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.5) Gecko/20031007
Check that. With Moz 1.5:
Opening in a new *TAB* takes one to MS. Clicking the link takes one to
/. with "http://www.microsoft.com%01@slashdot.org/" in the address bar.
That's odd.
-jim
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Thu Dec 11 13:38:00 2003
This archive was generated by hypermail 2.1.8 : Thu Dec 11 2003 - 14:01:01 CST
Custom Search
