Spoofing bug found in IE7

Security experts have found a weakness in Internet Explorer 7 that could help crooks mask phishing scams, the type of attack Microsoft designed the browser to thwart.

IE7, released last week, allows a Web site to display a pop-up that can contain a spoofed Web address, security monitoring company Secunia said on Wednesday. An attacker could exploit this weakness to trick people into believing they are on a trusted Web site when in fact they are viewing a malicious page, Secunia said in an alert. Spoofing bug found in IE7: ZDNet Australia: News: Security

Linked by shanmuga Thursday, 26th October 2006 11:11PM