Re: IE URL obfuscation

From: Lucas, Mark (mjlucas_at_CALTECH.EDU)
Date: 12/10/03

Next message: http-equiv_at_excite.com: "Re: IE URL obfuscation"

Previous message: Busby, Richard: "Re: IE URL obfuscation"
Maybe in reply to: Ben Reardon: "IE URL obfuscation"
Next in thread: http-equiv_at_excite.com: "Re: IE URL obfuscation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Wed, 10 Dec 2003 08:00:11 -0800
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

I run SmartExplorer (http://www.smarteque.com/). Even though it runs as more
or less of a shell over IE, the vulnerability does not exist. The full
specially crafted URL is visible in the address bar. Apparently,
SmartExplorer handles the address bar differently. Although, the 0x01
character shows up as a dark vertical line, unlike Mozilla where the
characters are displayed.

IE: http://www.microsoft.com
SmartExplorer:
http://www.microsoft.com @zapthedingbat.com/security/ex01/vun2.htm
Mozilla:
http://www.microsoft.com%01@zapthedingbat.com/security/ex01/vun2.htm

----------------
Mark J. Lucas, Sr. System Administrator
ITS, Parsons-Gates
California Institute of Technology
Voice: (626) 395-5949
Mobile: (626) 975-7582
mjlucas@caltech.edu

----
NTBugtraq subscribers save $103.00 off the TICSA exam by using promo
code "NT1003" when registering to take the TICSA exam at www.2test.com.
Prove to your employer and peers that you have the knowledge and
abilities to be an active stakeholder in today's enterprise security.
Become TICSA certified www.trusecure.com/ticsa.  Promotion expires
12/31/03 and cannot be used in combination with other offers.
----

Next message: http-equiv_at_excite.com: "Re: IE URL obfuscation"

Previous message: Busby, Richard: "Re: IE URL obfuscation"
Maybe in reply to: Ben Reardon: "IE URL obfuscation"
Next in thread: http-equiv_at_excite.com: "Re: IE URL obfuscation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]