« Spybot S&D Definitions Updated on October 27, 2006 | Blog Home | WinAntiVirusPro2006/2007 popup is indication of a malware infection »

IE7 Spoofing/Phishing Bug "Pops Up"

Security researchers have identified a pop-up address bar spoofing weakness in Microsoft's newly released Internet Explorer 7 browser. The flaw, first reported by security notification firm Secunia, might
lend itself to phishing attacks and remains currently unpatched.

The details about this flaw are found here.

The security bug creates a means for hackers to display a popup with partially spoofed address bar where a number of special characters have been appended to a URL. Only part of the address bar will be
displayed, creating a possible mechanism to trick users into believing they are visiting a trusted site rather than one controlled by hackers.

The weakness has been confirmed to exist in IE7, running even on a fully patched Windows XP SP2 system. A number of possible workarounds have been suggested, pending a fix from Microsoft. Secunia advises surfers not to follow links from untrusted sources. The SANS Institute's Internet Storm Centre suggests a more sophisticated fix involving configuring IE7 to open a new Windows in a new tab.

"This vulnerability has a lot of potential for phishers or others that attempt to trick the user into trusting the popup window as they trust the site displayed in the main window," The Internet Storm Centre notes.

Last week, Secunia and Microsoft got into a dispute about whether a separate information disclosure vulnerability affected IE7 or Outlook Express.

Secunia has created a test page, so that IE7 users can check their browsers for this vulnerability.

Secunia Advisory: SA22542
Release Date: 2006-10-25
Last Update: 2006-10-27
Critical: Less critical
Impact: Spoofing
Where: From remote
Solution Status: Unpatched
Software: Microsoft Internet Explorer 7.x

Internet Security 2008 - Windows Vista Certified

Posted by Wiz on October 27, 2006 11:57 AM |

Spyware Doctor is a multi-award winning spyware removal utility that detects, removes and protects your PC from thousands of potential spyware, adware, Trojans, keyloggers, spybots and tracking threats.

Spyware Doctor
Spyware Doctor utilizes a sophisticated database of malware infections to detect and remove malware from your computer. The database currently incorporates over 50,000 signatures. Multiple databases are released each week, assisting you to keep your system free of new infections.

Spyware Doctor is fully capable of detecting and removing hidden processes associated with complex threats and rootkits. Such threats are otherwise difficult to remove by conventional means since they may be hidden to the operating system.

A Startup Scanner removes references to malicious programs that run at startup in the registry and Windows startup files, as well as malicious files in Windows startup locations.

State-of-the-art scanning engines, including file scan, memory scan, registry scan, browser helper objects scan, cookie scan and much more.

Add to Technorati Favorites

Search


MailWasher Pro is a POP3 email client spam filter

Recent Posts

Popular Posts

Categories

Wizcrafts main pages

Wizcrafts Home Page
Security Alerts
Frequently Asked Questions
Website Hosting Solutions
Links and Resources
MailWasher Pro Spam Filter
Networking Fundamentals
About Computer RAM & Upgrades
Webmaster Services
Wizcrafts' Site Map

Anti-Spyware websites

Windows Live OneCare Safety Scanner
ZoneAlarm Pro Firewall
AVG Free Anti Virus/Spyware
US-CERT.gov
AboutBuster
CWShredder
Spybot Search & Destroy
Spyware Blaster
Ad-Aware Personal
SiteAdvisor Toolbar
Strider URL Tracer
Windows Defender
Rogue Anti-Spyware list
HijackThis
A-squared HiJackFree
A-squared Trojan remover

Spyware Removal Forums

AboutBuster Support Forums
CastleCops Forums
Safer Networking Forums
SpywareWarrior Forums
Spywareinfo Forums
MajorGeeks Forums
TomCoyote Forums
Wilders Security Forums
Bleeping Computer HijackThis Logs and Analysis
Bleeping Computer Spyware Removal Guides
A-Squared Malware Removal Forums
AVG-Free Self Help Forums

Archives

Subscribe to this blog's feed
[What is this?]
Powered by
Movable Type 3.36

Start your blog today