Address Bar Spoofing Attacks Against Microsoft Internet Explorer 6
Category: Knowledge Zone: Documents: Browsers
This write-up presents two new phishing attack techniques, abusing an address bar issue (security vulnerability) with IE6 in combination with non-standard DNS domain names. The net result is that a phishing site may present itself via a link that when clicked in IE6 displays an almost indistinguishable URL from the one in used by the genuine site. The technique is new, i.e. it's different than the ASCII similar characters and IDN homographs attacks.
|
|
|
What's new! What's up?
- New Security Job Offers category!.
- Modified our Blog so that the wordpress theme matches with the rest of the site layout.
- Restructured the Security Companies category - now sorted by location.
- New Website layout! I have also restructured the top categories in order to keep them to a minimum.
- New Checklists category. Submit your checklists!
- New Videos category. Now collecting tutorials, recorded techniques, etc.
- New cheat sheets category inside Documents!
- New Metasploit plugins category! Feel free to submit links to any meterpreter or metasploit plugins you may have!
|
