Nice new IE vulnerability...

[konichiwa]

address bar...

Thanks MS for yet another bug...

 

[fs5]

Bad Request (Invalid URL)

another reason to switch to firebird :beer:

 

[BigKev]

Firebird isn't fooled. Stupid IE.

 

[hdeck]

my browser isn't vunerable yay firebird

 

[minendo]

Yet another thread for everyone to say how great firebird is.

 

[samgau]

Opera gives a warning message...... and after that it displays the address with a weird symbol in it... so no..opera is not fooled...

 

[Glitchny]

Originally posted by: minendo
Yet another thread for everyone to say how great firebird is.

yep

 

[MrScott81]

so there's no fix for this yet??
this is kind of scary

 

[Bassyhead]

Probably isolated to IE. Opera isn't fooled either.

 

[Ogg]

damn I wish I was cool......and had firebird

 

[Muadib]

So this isn't ATOT?!? Blasted hackers!!!:|

 

[Muck]

HA ha. Stupid IE.

 

[konichiwa]

Originally posted by: Bassyhead
Probably isolated to IE. Opera isn't fooled either.

You think? Hence the reason the title of this thread is

Nice new IE vulnerability...

 

[ATLien247]

Great!

Now I have to be even more careful with the links that people post...

(Although, I did notice that the spoofed URLs don't have a '/' on the end.)

 

[Crusty]

the joys of firebird

 

[BillGates]

I love how Firebird users like to laugh at IE... Yet they don't realize that 90%+ of the world uses IE and as such a lot more collective time is spent trying to exploit IE over any other browser. I guarantee if hackers/crackers/etc gave a flying fsck about other browsers we'd see a lot more exploits for them too. This goes for the Windows vs. Apple or Linux arguments as well.

 

[dullard]

IE displays this for about a 1/2 second:

http://www.microsoft.com°

then it quickly changes to this:

http://www.microsoft.com

Is everyone else with IE seeing the temporary symbol at the end? Drat, FuseTalk keeps linking them. Sorry but the links don't work and I cannot remove them.

 

[theNEOone]

Originally posted by: BillGates
I love how Firebird users like to laugh at IE... Yet they don't realize that 90%+ of the world uses IE and as such a lot more collective time is spent trying to exploit IE over any other browser. I guarantee if hackers/crackers/etc gave a flying fsck about other browsers we'd see a lot more exploits for them too. This goes for the Windows vs. Apple or Linux arguments as well.

shut up billy.


=|

 

[Snapster]

So the IE only vulnerability is where.......

As far as you can see, the
%00 code just stops the rest of the address being printed in IE. Both IE AND Mozilla Firebird goto the same page when clicking on the link, why does it even goto the secunia site at all (In firebird as well, not 'just' IE) if it's an invalid URL.

 

[ViRGE]

Sonofa... I'll give it 30 minutes until someone uses this to do a Goatse trick, and 1 day until a new PayPal scam is put forth.

 

[theNEOone]

Originally posted by: ViRGE
Sonofa... I'll give it 30 minutes until someone uses this to do a Goatse trick, and 1 day until a new PayPal scam is put forth.

they're probably already floating around.


=|

 

[tyler811]

Thank you for posting this.

 

[XZeroII]

Originally posted by: konichiwa
address bar...

Thanks MS for yet another bug...

write your own 100% foolproof browser then. Being a software engineer is probably one of the toughest jobs in the world, so unless you actually know what you are talking about, STFU. You can post vulns, but check your attitude at the door.

 

[konichiwa]

Originally posted by: XZeroII

Originally posted by: konichiwa
address bar...

Thanks MS for yet another bug...

write your own 100% foolproof browser then. Being a software engineer is probably one of the toughest jobs in the world, so unless you actually know what you are talking about, STFU. You can post vulns, but check your attitude at the door.

Hahaha

 

[Sid59]

that's sorta scary. im glad my gf loves firebird. hate to see her get fooled. other friends, have not seen the light.