Author Topic: IE Explorer URL spoofing vulnerability  (Read 13773 times)

0 Members and 1 Guest are viewing this topic.

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
MW

Offline .: Mac :.

  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5070
Re:IE Explorer URL spoofing vulnerability
« Reply #1 on: December 12, 2003, 11:56:38 PM »
The dec 2 BlackICE update  that i have protected me!
"People who are really serious about software should make their own hardware." - Alan Kay

Offline techie101returns

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1900
Re:IE Explorer URL spoofing vulnerability
« Reply #2 on: December 13, 2003, 07:21:09 PM »
Minacross,

Very important information you came across.
Failed the test myself.  At least I can watch the URL bar now until MS decides to come up with a critical update (which they have not as of today.....I just checked).

Thanks,
techie

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
Re:IE Explorer URL spoofing vulnerability
« Reply #3 on: December 13, 2003, 07:44:52 PM »
your welcome  :)
MW

Offline Waldo

  • Sr. Member
  • ****
  • Posts: 397
  • Avast does the ownage
Re:IE Explorer URL spoofing vulnerability
« Reply #4 on: December 13, 2003, 08:36:14 PM »
I ran the 2 tests, and it seems i failed them also... :(

Time to find a solution...

Waldo

**Guns are for show, knifes for a pro**

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
Re:IE Explorer URL spoofing vulnerability
« Reply #5 on: December 14, 2003, 05:33:21 PM »
« Last Edit: December 14, 2003, 05:37:25 PM by minacross »
MW

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67269
Re:IE Explorer URL spoofing vulnerability
« Reply #6 on: December 14, 2003, 06:59:31 PM »
I failed in both tests with IE... Could not find a solution yet  :'(
The best things in life are free.

Offline techie101returns

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1900
Re:IE Explorer URL spoofing vulnerability
« Reply #7 on: December 14, 2003, 09:28:04 PM »
minacross,

The information on MyIE2 was very good.  I reviewed the whole site including the plugins.  It is certainly worth considering.

Have you had any compatability problems in using MyIE2?

Does MS IE or any update to IE affect MyIE2?

Does it have an Uninstaller?  This is crucial!  If MyIE2 "spiders" into the system, you can't really get it out (like Netscape! bah!)


Technical,

Have you tried MyIE2yet?  Let me know.  I want to read some more reviews before giving it an install.

techie

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
Re:IE Explorer URL spoofing vulnerability
« Reply #8 on: December 14, 2003, 09:38:19 PM »
techie,

- no compatability problems in using MyIE2..  ;D
- I think IE updates affects MyIE2
Quoted from download.com :
MyIE2 is a multipage browser based on the Internet Explorer core (IE 5.x or 6.0 required). It can open multiple Web pages in just one window, and it only takes a few system resources when you're surfing with the integrated user interface. It supports special plug-ins and IE extensions, and its features include autoscrolling, form autofilling, external tools, plug-in support, newsgroup browsing mode, mouse gestures, customizable skins, and an autohide panel. The latest release includes a media player sidebar, a new search bar, and several performance enhancements.

- it has an ininstaller (from add/remove prograns and from the start menu)..
« Last Edit: December 14, 2003, 09:39:02 PM by minacross »
MW

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67269
Re:IE Explorer URL spoofing vulnerability
« Reply #9 on: December 14, 2003, 10:09:10 PM »
Technical,
Have you tried MyIE2yet?  Let me know.  I want to read some more reviews before giving it an install.
techie

No I haven't tried it yet  :'( I'm downloading it now!  ;D
Anyway, it could be desinstalled with safe as minacross said.
The best things in life are free.

Offline techie101returns

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1900
Re:IE Explorer URL spoofing vulnerability
« Reply #10 on: December 14, 2003, 11:39:54 PM »
Looks good to me.

Going for the download.

Talk to you guys later.

techie

Offline .: Mac :.

  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5070
Re:IE Explorer URL spoofing vulnerability
« Reply #11 on: December 14, 2003, 11:48:19 PM »
I use Mozilla personally (so it doesnt affect me?) but I will download as well  :)
« Last Edit: December 14, 2003, 11:50:46 PM by MacLover2000 »
"People who are really serious about software should make their own hardware." - Alan Kay

Offline techie101returns

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1900
Re:IE Explorer URL spoofing vulnerability
« Reply #12 on: December 15, 2003, 10:39:01 PM »
Minacross,

Just wanted to let you know that while I was downloading from MyIE2.com, SpywareBlaster nailed a browser hijack attempt.  Although it was only an attempt to change my home page to (I think) www.shareing.com or something like that, it had to come from a 3rd party vendor using MyIE2 as a "piggyback".

Anyone else noticed this?

Still have not tried MyIE2 yet.

techie

Offline .: Mac :.

  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5070
Re:IE Explorer URL spoofing vulnerability
« Reply #13 on: December 15, 2003, 10:49:10 PM »
spyware guard found the same here
"People who are really serious about software should make their own hardware." - Alan Kay

Offline techie101returns

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1900
Re:IE Explorer URL spoofing vulnerability
« Reply #14 on: December 15, 2003, 10:56:11 PM »
Mac,

I have Spyware Guard and Blaster installed, so it could have been SG instead.

Not sure if I want to install MyIE2 now.  I hate spyware.

techie