Alnini.comInternet » Patches & Updates » Openwares IE Security Patch
  

Openwares IE Security Patch 1.0


This patch addresses vulnerability in Microsoft Internet Explorer that could allow Hackers and con artists to display a fake URL in the address and status bars. The vulnerability is caused due to an input validation error, which can be exploited by including the '%01' and '%00' URL encoded representations after the username and right before the '@' character in an URL. Successful exploitation allows a malicious person to display an arbitrary FQDN (Fully Qualified Domain Name) in the address and status bars, which is different from the actual location of the page. This can be exploited to trick users into divulging sensitive information or download and execute malware on their systems, because they trust the faked domain in the two bars.

Publisher:

File size:

267KB

Date added:

16/12/2003

Licence:

Free

Requirements:

Windows 98/Me/NT/2000/XP

Un/Install:

Yes

Downloads:

1,905

Download Now!

See Also

Disable Messenger Service 2.0

Disable the Windows Service that is responsible for the Messenger pop-ups.

Reporting for SUS Server 1.1

Implement reporting functionality in Microsoft Software Update Services Server.

Openwares IE Security Patch 1.0

Disallow hackers to display a fake URL in the address and status bars.

Partners
• 

RSS | FAQ |

Links | Maestro

Copyright © 2004-2023 Alnini, Inc. All Rights Reserved. Privacy Policy | Terms of UseGeneration time: 0.05 | SQL queries: 8