Spoofing Flaw Haunts IE, Firefox, Safari
Posted on: 06/22/2005 02:08 PM

eWeek has posted an article discussing a new flaw discovered in all major web browsers which could result in more successful phishing attacks.
"The problem is that java script  dialog boxes do not display or include their origin, which allows a new window to open a prompt dialog box, which appears to be from a trusted site," Secunia said in a public advisory. "Successful exploitation normally requires that a user is tricked into opening a link from a malicious Web site to a trusted Web site," the company added.
You can read the article in its entirety over here.




Printed from 2CPU.com (http://www.2cpu.com/contentteller.php?ct=news&action=story&page=spoofing_flaw_haunts_iefirefoxsafari.html)