bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/multiple/dos/11426.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

19 lines
No EOL
1 KiB
Text
Raw Permalink Blame History

#################################################################
# Securitylab.ir
#################################################################
# Application Info:
# Name: Internet Explorer
# Version: 8.0
# Other tested browsers that also automatically convert "\" to "/":
# - Firefox v3.6
# - Google Chrome 4.0.249.78 (36714)
#################################################################
Vulnerability: (IE address bar characters into a small feature)
My IE 8 on the address bar will automatically enter the url of the "\" (0x5c) transformed into "/" (0x2f)
Example: www.securitylab.ir<http://www.securitylab.ir> \ a Converted www.securitylab.ir/a<http://www.securitylab.ir/a>
Recently found that some phishing sites take advantage of this feature to bypass some security checks, it is hereby to be a mark
#################################################################
# Discoverd By: Pouya Daneshmand
# Website: http://securitylab.ir
# Contacts: admin[at]securitylab.ir & whh_iran[AT]yahoo.com
###################################################################
Reference in a new issue View git blame Copy permalink