dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
17
share rss forum feed

jram

join:2003-08-06
Albany, NY
reply to borborpa

Re: Another reason to use Firebird...

I hope this isn't true

A vulnerability which affects Internet Explorer can be exploited by scammers who try to trick people into revealing details of online banking accounts or other private information.

The flaw, wherein Internet Explorer displays the contents of one web site while showing a different, incorrect, address in the browser address bar, is not confined to IE but also affects version 0.7 of the Mozilla Firebird browser, according to a security analyst from Secure Data Group.

Ben Robson said members of the security communirty had found that all users of Internet Explorer 6, Outlook Express 6 and Mozilla Firebird 0.7 - the last-named on both Linux and Windows - were affected by this vulnerability.

However, others have contested the claim that the flaw can be exploited under Mozilla Firebird.

The flaw was disclosed on Wednesday by graphic designer Sam Greenhalgh who has set up a demonstration here.

Robson said the big giveaway in scams like those on eBay, where users were asked to enter details at a bogus website, was that the URL would not match the "eBay.com" address.
advertisement

advertisement

"This new vulnerability allows the attacker to send the victim to a page that looks and behaves just like the eBay site and has the "eBay.com" address in the address bar. But in fact any information the user provides is being sent to another website looking to steal their details," he said.

Robson said a malicious user could use this vulnerability and create a series of fake websites that looked like they were those of a legitimate company.

"They can ask the user for credit card details. However upon going to the page, inspite of what the URL states, the user is in fact at the malicious user's website. As a result the user may unwittingly enter important personal information," he said.

Using a technique such as this with the recent 'eBayUpdates' scam would have made the scam almost impossible to detect until it was too late for thousands of victims, Robson said.

He said it worked with SSL-encrypted links as well. "As such it would be very easy for someone to misrepresent themselves as a bank, or other financial institute and convince the user to input their access details. Even the little 'lock' symbol at the bottom of the browser would look right.

"We have proved that it is possible to direct a web browser to an alternate web server, whilst placing a bank's URL in the address bar, and having the link place the banks URL in the status bar at the bottom of the screen. As such we can see no way that a user might determine that a link is illegitimate," he said.

Neither Microsoft nor the Mozilla project have yet publicly reacted to the news of the vulnerability.


jplove71
Premium
join:2001-03-16
Scottsdale, AZ
said by jram:
The flaw, wherein Internet Explorer displays the contents of one web site while showing a different, incorrect, address in the browser address bar, is not confined to IE but also affects version 0.7 of the Mozilla Firebird browser, according to a security analyst from Secure Data Group.
The difference between MSIE and Mozilla Firebird is that the fake URL is visible in the address bar in Firebird whereas it isn't when using MSIE.
--
Browsing with Mozilla Firebird 0.7

jram

join:2003-08-06
Albany, NY
Thank-you,I just started using Firebird a couple months ago and have it the way I want..I have a couple of comments,I 'm on the machine at least 7hrs.a day,never been to a site that I have had a problem on ,including on-line banking..They have a extension open with IE just in case..I haven't had any kind of a pop-up since I've been using Firebird,not even the sliding ones.
Last thing,yes IE can be set-up to be secure but it will drive you nuts with them asking all of the time blah blah blah,I have to many things to do to waste my time..