Author Topic: IE Explorer URL spoofing vulnerability  (Read 13762 times)

0 Members and 1 Guest are viewing this topic.

Offline .: Mac :.

  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5070
Re:IE Explorer URL spoofing vulnerability
« Reply #15 on: December 15, 2003, 11:08:46 PM »
it was most likely spyware guard blaster doesnt alert you like that it just keeps spyware fron running
"People who are really serious about software should make their own hardware." - Alan Kay

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
Re:IE Explorer URL spoofing vulnerability
« Reply #16 on: December 16, 2003, 09:52:37 AM »
I have spyware blaster installed, I had nothing of this  ::) ::)
MW

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
Re:IE Explorer URL spoofing vulnerability
« Reply #17 on: December 16, 2003, 10:11:06 AM »
I scanned my system with Spybot SnD and it found np spaware files on my pc  ;D
MW

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67269
Re:IE Explorer URL spoofing vulnerability
« Reply #18 on: December 16, 2003, 11:36:09 AM »
I scanned my system with Spybot SnD and it found np spaware files on my pc  ;D

Mina, do you have Ad-aware from Lavasoft?

Don't you use the version 2.0 from SpyBot? Are your 'spy' definitions updated?

I hate spywares  >:(
The best things in life are free.

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
Re:IE Explorer URL spoofing vulnerability
« Reply #19 on: December 16, 2003, 01:35:28 PM »
yes, I have Ad-aware on my pc..
I scanned my system and it found only 'alexa' component (that is an IE component not related to MyIE2) as I reinstalled IE6 SP1 a few days ago..
Spyware SnD, Spyware Blaster and Ad-aware are all up-to-date..
I also hate spyware  >:(

Edit: I do not know about this ver.2 of Spybot S&D  ::) the last stable ver. is 1.2  :-\
« Last Edit: December 16, 2003, 01:44:34 PM by minacross »
MW

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67269
Re:IE Explorer URL spoofing vulnerability
« Reply #20 on: December 16, 2003, 09:20:41 PM »
yes, I have Ad-aware on my pc..
I scanned my system and it found only 'alexa' component (that is an IE component not related to MyIE2) as I reinstalled IE6 SP1 a few days ago..
Spyware SnD, Spyware Blaster and Ad-aware are all up-to-date..
I also hate spyware  >:(

Edit: I do not know about this ver.2 of Spybot S&D  ::) the last stable ver. is 1.2  :-\

Sorry, my mistake: 1.2 and not 2.0...
Techie: what's happening now? Will you install or not? Is there just one spyware (alexa, like said minacross, is related to IE and not myIE2)? What is the name of the spyware?
The best things in life are free.

Offline .: Mac :.

  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5070
Re:IE Explorer URL spoofing vulnerability
« Reply #21 on: December 16, 2003, 09:27:04 PM »
where did you get 1.3 beta?
"People who are really serious about software should make their own hardware." - Alan Kay

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
« Last Edit: December 16, 2003, 09:50:49 PM by minacross »
MW

Offline .: Mac :.

  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5070
Re:IE Explorer URL spoofing vulnerability
« Reply #23 on: December 16, 2003, 09:41:32 PM »
great new features but ill wait for final release  ;)
"People who are really serious about software should make their own hardware." - Alan Kay

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67269
Re:IE Explorer URL spoofing vulnerability
« Reply #24 on: December 17, 2003, 01:03:27 AM »
great new features but ill wait for final release  ;)

Not so sure it was great new features. I collect some information of the links posted by Minacross:

Spybot Search and Destroy 1.3 Beta 4  
Author: PepiMK Software
Program Type: Freeware

Spybot Search and Destroy searches your hard drive for so-called spy- or adbots; that is, little modules that are responsible for the ads many programs display. Many of these modules also transmit information, including your surfing behavior on the Internet. If it finds such modules, it can remove them. In most cases the host still runs fine after removing the spyware/adware. Another feature is the removal of usage tracks, which makes it more complicated for unknown spybots to transmit useful data. The list of last visited websites, opened files, started programs, cookies, all that and more can be cleaned. Supported are the three major browsers Internet Explorer, Netscape Communicator, and Opera.

Changes in Current Version:
Removed old button panel
"Wait for programs": added hint/tooltip for long filenames
"Wait for programs": oriented vertically for long filenames
Creation of system restore point during internals fix
Creation of system restore point during spyware fix
Fixed advanced mode icon problem
System Startup info like new problem info
Skins section revised
InfoPanel symbols
Results & recovery toolbars moved to the top.....
 
 Issues and opinions:
- the updater appears to freeze, rendering the programme unusable during the update (defaults to UniDo (Europe)).
- a better UI
- uninstall old version before installing this one
- mostly cosmetic changes: some things have been moved around. The browser settings to lock start page and hosts file has its own page now, and is no longer under the "Immunize" tab.
- slower scanning proccess in some machines, faster in others. On the first scan, it calculates your approximate disk usage. Scan again and it should count more accurate. It does scan a little slower, but more nasties are popping up each day.
- strange uninstall procedure
- this version creates System Restore Points before fixing anything, you can disable that feature in settings.
- don't forget...this is a beta version, the code probably hasn't been fully optimized
The best things in life are free.

Offline techie101returns

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1900
Re:IE Explorer URL spoofing vulnerability
« Reply #25 on: December 17, 2003, 01:47:29 AM »
Technical
Quote
Techie: what's happening now? Will you install or not?
Although MyIE2 looks very nice, I am going to stick with my IE6 for now.  MyIE2 has a lot of bells and whistles that I do not need.

Quote
Is there just one spyware (alexa, like said minacross, is related to IE and not myIE2)?
I usually come up with the Alexa spyware from time to time.
Adaware picks it up right away.

Quote
What is the name of the spyware?
If you are referring to me, I think it was a browser hijack to www.shareing.com, an advertising site.  As Minacross corrected me, it must have been SpywareGuard that caught it.

I like Spybot, but do not care for beta versions of anything unless I am testing them.  I'll keep my present version of Spybot until the final is out in agreement with Mac.

techie :D

Offline MWassef

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1315
Re:IE Explorer URL spoofing vulnerability
« Reply #26 on: December 17, 2003, 08:30:38 AM »
I did not have any problems with 1.3B4 till now, thank God  ;D
More info about Alexa: Alexa Related??
MW