iTWire - Secunia claims another IE7 vulnerability

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Technology news and Jobs

Information Technology News

Secunia claims another IE7 vulnerability

Secunia claims another IE7 vulnerability

E-mail

by Stan Beer
Thursday, 26 October 2006
Danish security firm Secunia claims that another weakness has been discovered in Internet Explorer, which can be exploited by malicious people to conduct phishing attacks. Featured Whitepaper 5 Best Practices for Smartphone Support Last week, Secunia found an Outlook Express vulnerability that could exploit IE7 when users visited a malicious website. Acording to Secunia, the latest problem involves a vulnerability which involves spoofing a URL in the address bar. "The problem is that it's possible to display a popup with a somewhat spoofed address bar where a number of special characters have been appended to the URL. This makes it possible to only display a part of the address bar, which may trick users into performing certain unintended actions," the Secunia advisory reads. Secunia has constructed a demonstration, which is available at the following address and says in its advisory that he weakness is confirmed in Internet Explorer 7 on a fully patched Windows XP SP2 system. "These are the kind of spoofing vulnerabilities, which IE7 was supposed to be better at protecting against than its predecessor," said Secunia chief technology officer, Thomas Kristensen , in an email to iTWire. "While the issue isn't clear cut since the vigilant (paranoid?) user might be able to spot that something isn't quite right, then any user not wearing the paranoid glasses is easily fooled by this trick - despite the built-in anti-phishing mechanism being enabled," Kristensen added. {moscomment} Tags See All Tags Internet Microsoft Security Powered By Joomla Tags Please enable JavaScript in your browser to post your comment!

< Next story in category		Previous story in the category >

Sponsored Releases

progeCAD 2009 Free 2010 Version Upgrades Offer from CADDIT.net

Virtual Computer brings reduced desktop management costs to Australia

NETSUITE ANNOUNCES Q3 09 RESULTS

AVG (AU/NZ) Wins Computer Troubleshooters Vendor of the Year Award for the Second Year

Mobile & Wireless VoIP on the Apple iPhone

...Promote your press-releases here

Latest jobs

Desk Side Developer ? Equities
VB.Net / VB6 Developers with SQL Server skills ? Contracts x 3
SOE Project Manager (Q4)
Junior Desktop Support (M17)
Resource Coordinator (M17)
Junior Desktop Support (M17)
Cisco IPCCE Specialist
Solutions & Services Group Director
Web Developer ASP.Net
Business Analyst

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Business & IT Transformation Roles

Systems Analysts	Business Process Analysts
Test Analysts	Business Analysts
Business Readiness Analysts

Project C

stats for wordpress

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking