Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: strange domain name in phishing email

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Thu, 16 Mar 2006 18:02:48 +0200 (EET)
It seems that this case has the name Dotless IP Address Security Issue and KB article #168617 http://support.microsoft.com/?kbid=168617 describes it even in IE4. 
Correct if I'm wrong.

- Juha-Matti
IIRC, Microsoft changed that as one of the security updates to IE. For a time, it was a popular phishing trick. I also remember there was a way to do that (or something similar) to bypass the security zones in IE and make it think it was a trusted site, but can't find that reference at hand.
The "rest" of windows will still do it though. Try "ping 2887060730" or "telnet 2887060730 80". 

~Mike.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: