Wednesday, December 10, 2003

Another Internet Explorer Vulnerability

The latest Internet Explorer URL Spoofing Vulnerability, reported by Secunia. This is nasty - as it allows IE to show an arbitrary FQDN in the address bar, which is different from the actual location of the page. Thus, you might see "www.microsoft.com" in the address bar, yet IE is actually trying to render "www.badsite.XXX".

While most folks reading this will not be likely to get hit by such tricks, the average user may well be. Let's get the patch for this, and get it applied quickly!

No comments: