IE7 hit by URL spoofing flaw

First security flaw hits new Microsoft browser

Tom Sanders in California

Microsoft has issued a warning against a vulnerability in its Internet Explorer 7 browser that could allow attackers to spoof the address of a website.

An attacker could exploit the flaw by making a user click on a specially crafted website that would launch a pop-up window. The attacker could then forge the URL for the pop-up, for instance to make it look like a log-in window for an online bank. The URL of the phishing site will still be available, but is pushed outside the visible area of the window.

Advertisement

Danish security vendor Secunia published details of the vulnerability on its website on Wednesday. The company rated the vulnerability as "less critical", the second step on its five step security severity rating.

The flaw is the first published vulnerability in the Internet Explorer 7 browser that was launched last week. An IE7 vulnerability that Secunia published last week turned out to affect an Outlook component rather than Internet Explorer.

Microsoft in a blog posting noted that IE7's new anti phishing technology can help prevent the phishing pop-ups from opening. The company also noted that users should follow security best practices and refrain from entering confidential information on a website that doesn't offer an SSL certificate.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Related whitepapers

Related jobs

Most watched

Social networking

Summit: How businesses should manage their brands online

In part one of V3.co.uk's interview with Dirk Singer, he dicusses social media monitoring strategies

RIM discusses new developer tools

Blackberry exec on the latest offerings for programmers

Analysis and Reports

Remote access - Three steps to getting connected

3.4 million UK professionals now work from home – is your company equipped?

Cost benefits of a global collaboration network

This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

White paper library

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Spotlight

Information management

Summit: Quiz IBM experts on information strategies

Join our live chat session on Thursday at 11am to...

RIM discusses new developer tools

Blackberry exec on the latest offerings for programmers

Houses of parliament

Summit: Doubts raised over Tory plans for NHS records

Experts say data quality could be an issue

Researchers take down spam botnet

Researchers from security firm FireEye have been able to effectively...

Primary Navigation