IE address bar characters into a small feature

vendor:

Internet Explorer

by:

Pouya Daneshmand

4,3

CVSS

MEDIUM

Address Bar Characters Conversion

CWE

Product Name: Internet Explorer

Affected Version From: 8.0

Affected Version To: 8.0

Patch Exists: NO

Related CWE: N/A

CPE: a:microsoft:internet_explorer:8.0

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows, Firefox v3.6, Google Chrome 4.0.249.78 (36714)

2009

IE address bar characters into a small feature

My IE 8 on the address bar will automatically enter the url of the " (0x5c) transformed into "/" (0x2f). This feature can be exploited by phishing sites to bypass some security checks.

Mitigation:

Disable the automatic conversion of "\" to ""/"" in the address bar."

Source

Exploit-DB raw data:

#################################################################
# Securitylab.ir
#################################################################
# Application Info:
# Name: Internet Explorer
# Version: 8.0
# Other tested browsers that also automatically convert "\" to "/":
# - Firefox v3.6
# - Google Chrome 4.0.249.78 (36714)
#################################################################
Vulnerability: (IE address bar characters into a small feature)
My IE 8 on the address bar will automatically enter the url of the "\" (0x5c) transformed into "/" (0x2f)
Example: www.securitylab.ir<http://www.securitylab.ir> \ a Converted www.securitylab.ir/a<http://www.securitylab.ir/a>
Recently found that some phishing sites take advantage of this feature to bypass some security checks, it is hereby to be a mark
#################################################################
# Discoverd By: Pouya Daneshmand
# Website: http://securitylab.ir
# Contacts: admin[at]securitylab.ir & whh_iran[AT]yahoo.com
###################################################################