JollyStomper
The Funky Feel One
Premium
join:2003-03-16
Right 'Dere
 ·Comcast Formerly ..
| Is this the IE 'phishing' fix?
I happened upon this while running Windows Update:
»www.microsoft.com/technet/securi···ame=true
I had downloaded this onto my wife's machine already, and decided to catch a screenshot of this as well as posting the link to the TechNet article.
Input needed. Thanks.
js
--
"As I was sayin' buster, this planet ain't big enough for the two of us so... OFF YA GO!" Daffy Duck |
|
MSeng
Premium,Ex-Mod 2001-08
join:2000-07-13
Ork
clubs:
 ·AT&T U-Verse
| Yes, that is the fix for the "phishing" issue. Reference item 3 in the technical details:
A vulnerability that involves the incorrect parsing of URLs that contain special characters. When combined with a misuse of the basic authentication feature that has "username:password@" at the beginning of a URL, this vulnerability could result in a misrepresentation of the URL in the address bar of an Internet Explorer window.
--
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay... |
|
JollyStomper
The Funky Feel One
Premium
join:2003-03-16
Right 'Dere
·Comcast Formerly ..
1 edit | Thanks, MSeng.
I just looked through the Technical Details section. Will this be sticky-ed?
btw: It's about time they released this.
EDIT: I just saw this on the security forum too.
»Microsoft Security Bulletin(s) for 2/2/2004
--
"As I was sayin' buster, this planet ain't big enough for the two of us so... OFF YA GO!" Daffy Duck |
|
MSeng
Premium,Ex-Mod 2001-08
join:2000-07-13
Ork
clubs: | Updates in the MS Help Security Bulletin sticky are done in the evening....stay tuned, it will appear.
--
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay... |
|
