Description: Secunia Research has discovered a vulnerability in Internet Explorer, which can be exploited by a malicious website to spoof the address bar.
The vulnerability is caused due to an error in Internet Explorer's handling of "onunload" events, enabling a malicious website to abort the loading of a new website. This can be exploited to spoof the address bar if e.g. the user enters a new website manually in the address bar, which is commonly exercised as best practice.
The vulnerability is confirmed on a fully patched Windows XP SP2 system running Internet Explorer 7 or Internet Explorer 6. Other versions may also be affected.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, using the Network Software Inspector.
Provided and/or discovered by: Originally discovered by:
* Jakob Balle, Secunia Research
Independently discovered and publicly disclosed by:
* Michal Zalewski
Changelog: 2007-03-02: Added CVE reference. Added information about Internet Explorer 6.
2007-10-09: Updated "Solution" section. Added link to Microsoft security bulletin.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
