Announcement

Collapse
No announcement yet.

Horrible exploit of unicode urls affects all browsers but IE

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    Horrible exploit of unicode urls affects all browsers but IE

    It doesnt affect IE because IE doesn't support unicode urls yet.
    Though a unicode url plug-in for IE will cause it to do the same thing.

    This one is BAD
    Page not found
    http://www.boingboing.net/2005/02/06/shmoo_group_exploit_.html
    Trending News on Science, Tech, Futurism, Politics, Science Fiction, and More


    chuck

    PS And the work around (network.enableIDN=false) they posted for Mozilla does not work.
    Last edited by cjolley; 7 February 2005, 14:18.
    Chuck
     秋音的爸爸
    Tags: None
  • #2
    Yes, it's a bad exploit.

    As a rule of thumb: If you visit your bank's site, paypal, etc., never follow a link; always type in the URL yourself or visit from a bookmark (if you trust your bookmarks haven't been modified).
    Use your browser's built-in password manager instead of typing in your password every time, it won't work on faked sites, giving you a hint that this is not the correct site, and you don't run the risk of submitting your password to a phishing site.
    These two methods make you immune to all but the most elaborate phishing attacks.

    AZ
    There's an Opera in my macbook.

    Comment

    • #3
      Re: Horrible exploit of unicode urls affects all browsers but IE

      Originally posted by cjolley PS And the work around (network.enableIDN=false) they posted for Mozilla does not work.
      "I had the same problem in the same browser until I used Tools/Options/Privacy to clear the browser's cache. After clearing the cache, the network.enableIDN setting *does* appear to prohibit the exploit."
      Ladies and gentlemen, take my advice, pull down your pants and slide on the ice.

      Comment

      • #4
        Re: Re: Horrible exploit of unicode urls affects all browsers but IE

        Just tried the "fix" + clearing the cache, didn't seem to make any difference in Firefox 1.0.

        Ahah, found the problem: the setting isn't loaded when the browser starts, it only lasts during the session that you set it in.

        And finally, a functional work-around: http://forums.mozillazine.org/viewtopic.php?t=215178
        Last edited by Jon P. Inghram; 7 February 2005, 18:03.

        Comment

        • #5
          That work-around works
          ( the compreg.dat one)

          NB.
          1, It is a per/user change, you you must do it for each user.
          2, Anything you do to firefox that causes compreg.dat to be rebuilt will un-fix it.

          Also, I changed the copy of compreg.dat in "C:\Program Files\Mozilla Firefox\components" also.
          It didn't seem to break anything....
          Maybe that will make the change permanent

          Chuck
          Last edited by cjolley; 8 February 2005, 11:19.
          Chuck
           秋音的爸爸

          Comment

          • #6
            I had to edit the compreg.dat as well.
            Chief Lemon Buyer no more Linux sucks but not as much
            Weather nut and sad git.

            My Weather Page

            Comment

            • #7
              Permanent fix using the adblock extention

              This is a permanent fix using the adblock extention:

              http://users.tns.net/~skingery/weblog/2005/02/workaround-for-idn-spoofing-issue.html


              chuck
              Chuck
               秋音的爸爸

              Comment

              • #8
                Yay, That works cjolley

                Comment

                • #9
                  I got a phishing email pretending to be from Barclays Bank today...looks like they are trying something simillar in the From and Subject lines to fool anti-spam s/w:

                  From: &#066&#0097rclays [Camille@barclays.co.uk] Sent: Fri 18/02/2005 06:38
                  To: xxx
                  Cc:
                  Subject: Barc‮yal‬s e-ma&#105l ver&#105&#102ication - xxx
                  Attachments:


                  Spam Assasin got it though

                  Edit: Shite - that displays properly on this page! Click on the 'quote' button to see it for what it is.
                  Last edited by Fat Tone; 18 February 2005, 01:49.
                  FT.

                  Comment

                  • #10
                    Fill it in to get them excited.
                    Chief Lemon Buyer no more Linux sucks but not as much
                    Weather nut and sad git.

                    My Weather Page

                    Comment

                    • #11
                      Originally posted by Fat Tone
                      I got a phishing email pretending to be from Barclays Bank today...looks like they are trying something simillar in the From and Subject lines to fool anti-spam s/w:
                      PHP Code:
                      From:   &#066&#0097rclays [Camille@barclays.co.uk] Sent:  Fri 18/02/2005 06:38 
                      To:   xxx
                      Cc                      :    
                      Subject:   Barc‮yal‬s e-ma&#105l ver&#105&#102ication - xxx
                      Attachments
                      Spam Assasin got it though

                      Edit: Shite - that displays properly on this page! Click on the 'quote' button to see it for what it is.
                      It will as I set the pages to display in unicode
                      Juu nin to iro


                      English doesn't borrow from other languages. It follows them down dark alleys, knocks them over, and goes through their pockets for loose grammar.

                      Comment

                      • #12
                        I tried the [ code ] tag, didn't know about [ php ]. Ta.
                        FT.

                        Comment

                        Previous template Next
                        Working...
                        X