Vulnerabilities

CVE-2003-1025

by Fred · 06/01/2004

Internet Explorer 5.01 through 6 SP1 allows remote attackers to spoof the domain of a URL via a "%01" character before an @ sign in the user@domain portion of the URL, which hides the rest of the URL, including the real site, in the address bar, aka the "Improper URL Canonicalization Vulnerability."

Date published : 2004-01-06

http://www.securityfocus.com/archive/1/346948

http://www.us-cert.gov/cas/techalerts/TA04-033A.html

Similar

Tags: Cybersecurity Alert