homepage Welcome to WebmasterWorld Guest from 54.211.219.20
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Pubcon Platinum Sponsor 2014
Home / Forums Index / Code, Content, and Presentation / HTML
Forum Library, Charter, Moderators: incrediBILL

HTML Forum

    
Patch issued for IE
Brett_Tabke

WebmasterWorld Administrator brett_tabke us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 7177 posted 3:53 pm on Feb 3, 2004 (gmt 0)

[washingtonpost.com...]

Microsoft Corp. released a security bulletin yesterday providing fixes for three major security flaws related to its Internet Explorer browser for surfing the Web, one of which allows hackers to mask the Internet address of a fake Web site.

 

EliteWeb

WebmasterWorld Senior Member eliteweb us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 7177 posted 3:57 pm on Feb 3, 2004 (gmt 0)

Finally they fixed the Address bar issue! Wanna know something? They said it was a feature not a bug or a error. Well they went ahead and blamed it on the hackers. Try the spammers and fraudsters getting credit card numbers, not the hackers. :D

But yes it is a cool issue, when clicking on the link usually masked with JS your address bar shows wellsfargo.com but it can go to a remote host elsewhere and your filling in your info.

Goober

10+ Year Member



 
Msg#: 7177 posted 4:03 pm on Feb 3, 2004 (gmt 0)

The link to MS in the bottom of the Wash Post story has an error.

A fine example of phishing:

I recently had a bogus "PayPal" update page sent to me. It asked me to click a link and re-file all my personal data as they were "switching servers!" I forwarded it to the real PayPal and they confirmed that it was a fake. I didn't click on any of the links in the fake update, but they appeared as real PP addresses.

I just went to PP to see if they had indeed issued an update.

Goober

nancyb

WebmasterWorld Senior Member 10+ Year Member



 
Msg#: 7177 posted 8:17 pm on Feb 3, 2004 (gmt 0)

I just got on today and can't get the MS update window to finish loading, even tried rebooting. Either I've got a problem on my machine, too many people are trying to update right now -or- the MyDoom virus has hit $M servers.

Anyone else having this problem?

keyplyr

WebmasterWorld Senior Member keyplyr us a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month



 
Msg#: 7177 posted 9:53 pm on Feb 3, 2004 (gmt 0)


Downloaded the security patch, restarted, then a DOS screen said the file could not be updated and my computer might not function properly.

Went back to Windows Update, did it all again - same results. Glad to see MS is on top of things.

tehon3299

10+ Year Member



 
Msg#: 7177 posted 12:32 am on Feb 4, 2004 (gmt 0)

Yea Goober, I had the same thing with PayPal. If you look at the email source, it goes to www.paypal-protect.com. I've gotten a lot of those and its scary how many people will fall for it because it looks so official.

lunarboy1

10+ Year Member



 
Msg#: 7177 posted 9:03 pm on Feb 9, 2004 (gmt 0)

someone created a minisite witch used these vulnerabilities to the max, and it was retty scary how "real" it all looked. I'm glad they fixed it so people don't complain to me about this stuff.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Code, Content, and Presentation / HTML
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved