Vulnerability Development mailing list archives
IE bookmark 'clever' feature not so clever after all
From: "perkere stinker" <doe_i_sorte_skodder () hotmail com>
Date: Wed, 15 Aug 2001 09:50:24 +0000
short: type the name of one of your bookmarks(favorites) in the addressfield in IE, and IE will execute the bookmark.
bit longer: its trivial to trick a user into accepting a bookmark for a popular site, uh, lets say www.hotmail.com .. or placing it yourself.
effect: users wont be able to access www.hotmail.com by typing the url in the address bar, they'll get redirected to whatever the bookmark points to.
impact: this could easily be used for putting up 'fake pages' on public accessible computers, like at libraries, schools etc. where pages likehotmail/google/msn are often accessed. That could give you a lot of nice usernames/passwords. And a lot of crap.
perhaps someone could try naming a bookmark http://www.hotmail.com and see what happens? seems i misplaced my funny filename generator..
this is stupid _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
Current thread:
- IE bookmark 'clever' feature not so clever after all perkere stinker (Aug 15)
- Re: IE bookmark 'clever' feature not so clever after all Sould3mon (Aug 15)
- Re: IE bookmark 'clever' feature not so clever after all Kevin Gagel (Aug 15)
- Re: IE bookmark 'clever' feature not so clever after all Xyntrix (Aug 15)
- Re: IE bookmark 'clever' feature not so clever after all Kevin Gagel (Aug 15)
- <Possible follow-ups>
- RE: IE bookmark 'clever' feature not so clever after all Petruzel, Oliver (Aug 16)
- Re: IE bookmark 'clever' feature not so clever after all Sould3mon (Aug 15)