IT: New Spoofing Vulnerability in IE
Posted by CowboyNeal on Thursday December 16, @07:57PM
from the url-b-gone dept. (slashdot.org)
Jimmy M. writes “A new vulnerability has been announced in Internet Explorer, also affecting XP SP2, which can very easily be exploited by a malicious web site to completely spoof the address bar. The vulnerability is very similar to another vulnerability disclosed just about a year ago called the ‘%00’ vulnerability, which also was widely exploited by phishers. A demonstration is also available.”