Login
Username:

Password:

Remember me



Lost Password?

Register now!

Sections

Who's Online
42 user(s) are online (25 user(s) are browsing Forums)

Members: 0
Guests: 42

more...

Headlines

 
  Register To Post  

Odyssey vulnerable to URL spoofing trick
Home away from home
Home away from home


See User information
An article about the exploit is here:
http://www.theregister.co.uk/2015/05/ ... ri_address_spoofing_vuln/

And you can prove that Odyssey is vulnerable using this:
http://www.deusen.co.uk/items/iwhere.9500182225526788/
(Click on "Go", and you will see a fake Daily Mail URL in the address bar.)


In short: Odyssey's web engine needs updating to something recent.

Author of the PortablE programming language.
I love using Amiga OS4
It is pitch black. You are likely to be eaten by a grue...
Go to top
Re: Odyssey vulnerable to URL spoofing trick
Just can't stay away
Just can't stay away


See User information
@ChrisH
If you click the link "Broadband routers: SOHOpeless and vendors don't care" on the article page, it becomes apparent that if your browser doesn't get you in trouble then your router will
However, that's no reason not to update the browser and get some protection.

Amiga X1000 with 2GB memory & OS 4.1FE + Radeon HD 5450

Go to top
Re: Odyssey vulnerable to URL spoofing trick
Home away from home
Home away from home


See User information
@ChrisH

No problem in AWeb

/me runs


Go to top
Re: Odyssey vulnerable to URL spoofing trick
Amigans Defender
Amigans Defender


See User information
@broadblues

Likewise fine in NetSurf

/hides

Go to top
Re: Odyssey vulnerable to URL spoofing trick
Home away from home
Home away from home


See User information
@Chris, @broadblues
You's guys aren't very helpful as neither of those browsers are based upon WebKit (which is used by Safari, the browser used for the URL spoofing trick).

edit: I'm sure that AWeb & NetSurf have lots of security vulnerabilities... if they were popular enough for anyone to look for them :) . Actually, isn't AWeb switching to the KHTML engine? Maybe someone is looking for vulnerabilites afterall!


Edited by ChrisH on 2015/5/22 17:41:33
Go to top

  Register To Post

 




Currently Active Users Viewing This Thread: 1 ( 0 members and 1 Anonymous Users )




Powered by XOOPS 2.0 © 2001-2016 The XOOPS Project