TUCoPS :: Browsers :: hack2179.htm

Forward:FullDisclosure/IE - Possible Address Spoofing
Forward:FullDisclosure/IE - Possible Address Spoofing

-----
SUBJ: FullDisclosure: multiple web browsers, multiple bugs - onUnload 
and location.href
FROM: Rudolf Polzer (divzero_at_gmail.com)
URL : http://seclists.org/lists/fulldisclosure/2004/Jul/1001.html 
DEMO: http://www.informatik.uni-frankfurt.de/~polzer/rbiclan/location 
-----

after i clicked "Google" on the page, address field of IE was faked - on 
ie6.sp1.up2date running on winxp.home.en.up2date

just got it at iebug.com today.

liudieyu
liudieyu AT umbrella D0T name

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH