[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity

To: LC <full-disclosure@lists.netsys.com>
Subject: Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
From: Jim Race <caferace@well.com>
Date: Thu, 11 Dec 2003 10:36:41 -0800

Jim Race wrote:

http://petard.freeshell.org/ms-announce.html

Mozilla 1.5:

Displays in status bar, as well as takes user to http://www.microsoft.com

Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.5) Gecko/20031007

Check that. With Moz 1.5:

Opening in a new *TAB* takes one to MS. Clicking the link takes one to /. with "http://www.microsoft.com%01@slashdot.org/"; in the address bar.

That's odd.

-jim

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
  - From: Heikki Toivonen <hjtoi@comcast.net>
- Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
  - From: Dave Sherohman <esper@sherohman.org>
- Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
  - From: Nick FitzGerald <nick@virus-l.demon.co.uk>

References:
- RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
  - From: David Vincent <david.vincent@mightyoaks.com>
- Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
  - From: Jim Race <caferace@well.com>

Prev by Date: RE: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerability
Next by Date: Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerability
Previous by thread: Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
Next by thread: Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
Index(es):
- Date
- Thread