[35069] in bugtraq
Re: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability
daemon@ATHENA.MIT.EDU (Peter Pentchev)
Mon May 31 14:19:59 2004
Date: Fri, 28 May 2004 08:57:42 +0300
From: Peter Pentchev <roam@ringlet.net>
To: sandrijeski@yahoo.com
Cc: bugtraq@securityfocus.com
Message-ID: <20040528055741.GC1015@straylight.m.ringlet.net>
Mail-Followup-To: sandrijeski@yahoo.com, bugtraq@securityfocus.com
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="r5Pyd7+fXNt84Ff3"
Content-Disposition: inline
In-Reply-To: <20040527095333.14251.qmail@www.securityfocus.com>
--r5Pyd7+fXNt84Ff3
Content-Type: text/plain; charset=windows-1251
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, May 27, 2004 at 09:53:33AM -0000, sandrijeski@yahoo.com wrote:
> In-Reply-To: <40A90108.9000301@kurczaba.com>
>=20
> I can't see this as vulnerability because its legal code I do
> something similar without using image map for my site to hide the
> affiliate tracking code.
>=20
> This is the code:
> <a onmouseover=3D"window.status=3D'http://www.the-url-you-see.com;return =
true"=20
> title=3D"The Link"
> onmouseout=3D"window.status=3D'Whatever-you-like-here';return true"
> href=3D'http://www.some-other-url.com'>The link</a>
>=20
> living example: http://lotdcrew.org/drunkteam_new/page/affiliates.php
Well, yes, it's true that with JavaScript and window.status we can never
trust the status line again, but the point of the original posting was
that this could be done on browsers with JavaScript *disabled*.
G'luck,
Peter
--=20
Peter Pentchev roam@ringlet.net roam@sbnd.net roam@FreeBSD.org
PGP key: http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553
I've heard that this sentence is a rumor.
--r5Pyd7+fXNt84Ff3
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)
iD8DBQFAttTV7Ri2jRYZRVMRAtLVAJ9ro365aH1s5+Ou2P4mKL0g1stEOQCgwep7
zb/xYEwRFjItRrES5Yqhd70=
=cyas
-----END PGP SIGNATURE-----
--r5Pyd7+fXNt84Ff3--
