Home page logo

Vulnerability Development mailing list archives

Re: IE bookmark 'clever' feature not so clever after all
From: Kevin Gagel <Gagel () cnc bc ca>
Date: Wed, 15 Aug 2001 15:05:13 -0700

Personally I like the idea that I can name my bookmarks whatever I want.
This allows me to save web sites that are poorly named with something I

Exploiting this would be a "social engineering" exploit, not a bug.
I guess the more integrated we get the harder it will be to prevent this
kind of social exploit.

Nothing short of a labotamy for exploiters can really help with a social
exploit. Especially since
most users tend to not bother understanding.

Therefor I recomend a real fix for the problem - Turn off the

yup  totaly right
rename bookmark to a website like hotmail and it follows the bookmark
instead of the real page meanted

Kevin W. Gagel
Network Administrator
College of New Caledonia
gagel () cnc bc ca
(250)561-5848 loc. 448

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]