IE6 & IE7 Beta 2 Address Bar Spoofing Exploit Source from Secunia

[iGuest 3]

So far there isn't a patch and the tests have been conducted on a fully uptodate Windows XP Machine running IE6 and confirmation on IE7 Beta 2 also suffering.

Here's the link, test your browser and see if you're vulnerable.

http://secunia.com/advisories/19521/

Be sure that you get notified of the update for this or just continue keep checking for Windows updates.

I don't run IE6, so cannot confirm it but others have said it does exploit them.


Cheers,


MC

[miCRoSCoPiC^eaRthLinG 0]

Hehe - just to be sure, I checked it out in both Firefox and Opera. Luckily both of them passed the test. So I guess, it's another of IE's famous (or infamous) security holes.

[jedipi 0]

The Internet Explorer Address Bar Spoofing Vulnerability Test can be found here:

http://secunia.com/Internet_Explorer_Addreerability_Test/

 

if You are vulnerable, a new window is opened and display contents from Secunia. but the address bar still says "https://www.google.de/?gfe_rd=cr&ei=BwkjVKfAD8uH8QfckIGgCQ&gws_rd=ssl;.

 

I passed this test with firefox 1.5.0.2. It does redirect to secuia.com on Firefox, but the address bar shows secunia.com, not google.com.

In my IE, it still shows google.com in the address bar after it is redirected to secuia.com.

[Kushika 0]

My mum never listens to me when I tell her to move to FF instead. This could be a bit of a risk, I suppose.

[nightfox1405241487 0]

My mum never listens to me when I tell her to move to FF instead. This could be a bit of a risk, I suppose.

haha... I've got BOTH my parents on Firefox! Even though that ugly blue "E" is so tempting to click on, they hit the Fox instead! I've got them well trained! lol

But this goes to show you... Firefox is a better browser!

[N]F