[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: IE Certificate Stealing (Phising) bug

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: RE: IE Certificate Stealing (Phising) bug
From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
Date: Sat, 1 May 2004 08:18:29 -0700

> From: E.Kellinis [mailto:me@xxxxxxxxxxxxx] 
> Sent: Friday, April 30, 2004 11:09 AM
> 
> If inside the index page links and forms use virtual 
> pointers to directories or files
> (e.g. images/ or form/submit.php) we can use the trust 
> of the visitor and steal information. 

Those aren't called "virtual pointers to directories or files".  They're
"relative URLs".  It's worth pointing this out because your recommended fix:

> Do not use virtual directories , instead use the real path or url
> Refresh access to the root directory

doesn't make sense as written.  "virtual directories" in this context
commonly refers to URL path segments that are mapped by the HTTP server to
filesystem entities with different names.  Avoiding them doesn't mitigate
this attack.  What you want to recommend here (presumably - I haven't tested
it myself) is using relative URLs as reference values in secure HTML pages.

-- 
Michael Wojcik
Principal Software Systems Developer, Micro Focus

Prev by Date: Props 0.6.1 XSS and Remote File Viewing Vulnerability
Next by Date: LNSA-#2004-0013: Multiple Vulnerabilities in Samba
Previous by thread: IE Certificate Stealing (Phising) bug
Next by thread: [RHSA-2004:163-01] Updated OpenOffice packages fix security vulnerability in neon
Index(es):
- Date
- Thread