[Full-Disclosure] Re: Internet Explorer URL parsing vulnerabi lity
Mortis
m0rtis at adelphia.net
Thu Dec 11 23:45:32 GMT 2003
> Using internet explorer, you can also put
> http://whateverhere@google.com and
> that will take you to google. It only matters
> what you put after the @ sign.
> I noticed that one day while putting in my email
> address in for hotmail.
J,
Check out 3.1 in this doc.
http://www.faqs.org/rfcs/rfc1738.html
I haveto clean the beeeeer off my keyyyyboard.
:)
Full-Disclosure is hosted and sponsored by Secunia.