Brothersoft.com Windows | Games | Mobile | Wallpapers

Advertisement

IEURL Spoofing Vulnerability 3.0

A vulnerability has been identified in Internet Explorer

Advertisement

Last Week downloads: 0
Total downloads: 263
  • Last Updated: Apr 29, 2009
  • License: Freeware Free
  • OS: Windows XP/2000/98/Me/NT
  • Requirements: No special requirements
screenshot

User reviews

4 out of 5 based on 1 ratings for IEURL Spoofing Vulnerability 3.0

For IEURL Spoofing Vulnerability 3.0Publisher's description

Advertisement

IEURL Spoofing Vulnerability is a Browser software developed by iesecurity. After our trial and test, the software is proved to be official, secure and free. Here is the official description for IEURL Spoofing Vulnerability:

BrothersoftEditor: A vulnerability has been identified in Internet Explorer, which can be exploited by malicious people to display a fake URL in the address and status bars.

The vulnerability is caused due to an input validation error, which can be exploited by including the "%01" and "%00" URL encoded representations after the username and right before the "@" character in an URL.

Successful exploitation allows a malicious person to display an arbitrary FQDN (Fully Qualified Domain Name) in the address and status bars, which is different from the actual location of the PaGE.

This can be exploited to trick users into divulging sensitive information or download and execute malware on their systems, because they trust the faked domain in the two bars.

Example displaying only "http://www.trusted_site.com" in the two bars when the real domain is "malicious_site.com":
http://www.trusted_site.com%01%00@malicious_site.com/malicious.html

The vulnerability has been confirmed in version 6.0, and version 5.x is also affected according to Microsoft's Knowledge Base article.
you can free download IEURL Spoofing Vulnerability 3.0 now.

For IEURL Spoofing Vulnerability 3.0Related Software

Statement

Please be aware that Brothersoft do not supply any crack, patches, serial numbers or keygen for IEURL Spoofing Vulnerability,and please consult directly with program authors for any problem with IEURL Spoofing Vulnerability.