Announcement

**EcstacyX** · December 31, 2003, 18:23

This small exploit becomes handy in the Fruad division. he he he.

**Sparks-Kelly** · January 22, 2004, 10:11

I dont Get it.

I dont understand how you do it. The whole http://User@Domain Is that a www address? Or what does that mean?

**bascule** · January 22, 2004, 11:07

Originally posted by Sparks-Kelly

I dont understand how you do it. The whole http://User@Domain Is that a www address? Or what does that mean?

IE has a UTF-16 address bar, and consequently it's valid for certain bytes to have a value of zero. However, clearly some of the display code is using zero terminated strings. Consequently, any part of the URL which lies after the zero is truncated.

**lil_freak** · January 22, 2004, 11:12

Originally posted by Sparks-Kelly

I dont understand how you do it. The whole http://User@Domain Is that a www address? Or what does that mean?

How long have you been using a computer? Or the internet?

**GidGreen** · January 22, 2004, 17:14

Originally posted by Sparks-Kelly

I dont understand how you do it. The whole http://User@Domain Is that a www address? Or what does that mean?

If you pop open mozilla or netscape and visit that webpage, then click the little button that sends you to supposedly microsoft, it will essentailly take you to
http://www.microsoft.com%01@zapthedi.../ex01/vun2.htm
instead.

the possibilities for exploitation are endless.

**Sparks-Kelly** · January 22, 2004, 17:47

Originally posted by GidGreen

If you pop open mozilla or netscape and visit that webpage, then click the little button that sends you to supposedly microsoft, it will essentailly take you to
http://www.microsoft.com%01@zapthedi.../ex01/vun2.htm
instead.

the possibilities for exploitation are endless.

Ok Thank you. That helps alot. I have been using the Internet for a long time but I just didn't get it that well.

**stingerbee** · February 16, 2004, 16:03

the only problem is up to date virus definitions throw up a message indicating a spoofed url. also, latest windows updates prevent this from working

**skroo** · February 16, 2004, 20:03

Originally posted by stingerbee

the only problem is up to date virus definitions throw up a message indicating a spoofed url. also, latest windows updates prevent this from working

Well... Yes. That's the point of patching your system.

As for the AV detection, AV is used for a lot of things it shouldn't be. That's a whole other can of worms, though.

**highwizard** · February 16, 2004, 21:00

Originally posted by skroo

As for the AV detection, AV is used for a lot of things it shouldn't be. That's a whole other can of worms, though.

Can of Worms... Good pun.

**NewKids123** · February 18, 2004, 23:11

I knew that patch would affect me porno surfing wise and buggy.

Thank god I use firebird.

Hm
Hm

Announcement

Yet another IE vulnerability

Yet another IE vulnerability

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment