[Dshield] MSFT Internet Explorer, %01 URL spoofing

Johannes B. Ullrich jullrich at sans.org
Mon Dec 15 18:24:41 GMT 2003

> When sent in a text email, the link was hyperlinked, but showed validly.

oh. I forgot the '#' in front of the 001. Try this link:


or with '<a>' tags:
<a href="http://secure.fakebank.com&#001;@secure.euclidian.com/fakebank.html">http://secure.fakebank.com</a>

CTO SANS Internet Storm Center               http://isc.sans.org
phone: (617) 786 1563            
  fax: (617) 786 1550                          jullrich at sans.org

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://www.dshield.org/pipermail/list/attachments/20031215/169789fe/attachment.bin

More information about the list mailing list