koolies - Coolies, One of the friendliest places on the Net...

koolies - Coolies, One of the friendliest places on the Net... > Lab Area > Street Smarts for your online activities.

Toffee

Feb 11 2005, 11:59 AM

This is reported security issue in multiple browsers, which can be exploited by a malicious web site to spoof the URL displayed in the address bar, SSL certificate, and status bar.

Please see the test below for an example of how this vulnerability can be exploited.

Test Case / Demonstration

Click the link below in order to test whether or not your system is vulnerable. The test will open a new window, where the address bar writes "http://www.paypal.com/", but the page is actually displaying content from Secunia.

http://secunia.com/multiple_browsers_idn_spoofing_test/

Result
You are vulnerable, if a new window is opened displaying a Secunia page, but the address bar is displaying "http://www.paypal.com/".

Silhouette

Feb 11 2005, 04:09 PM

Thanks for the tip

Up to date with the latest as usual.

I had no problems. Fortunately had a computer overhaul recently (even did some tweaking)...prooves the tech was pretty good at his job, probably should have paid him a bit more

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.