Closed Bug 298475 Opened 20 years ago Closed 20 years ago

Invalid paged redirect

Categories

(Firefox :: General, defect)

Product:
Firefox
Component:
General
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
VERIFIED INVALID

People

(Reporter: lglover1, Unassigned)

Details

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4

Link1:

http://www.microsoft.subscribe@3392568491    this link seems to be some sort of
subscriptions link to Microsoft but what behind the screens is some other link.
You click on the link, if your Internet Explorer is vulnerable then you will be
directed to www.rediff.com.

 

Link 2:

http://www.securityfocus.subscribe@3631052357 this link seems to be some sort of
subscriptions link to SecurityFocus but what behind the screens is some other
link. You click on the link, if your Internet Explorer is vulnerable then you
will be directed to www.yahoo.com .

Reproducible: Always

Steps to Reproduce:
Link1:

http://www.microsoft.subscribe@3392568491    this link seems to be some sort of
subscriptions link to Microsoft but what behind the screens is some other link.
You click on the link, if your Internet Explorer is vulnerable then you will be
directed to www.rediff.com.

 

Link 2:

http://www.securityfocus.subscribe@3631052357 this link seems to be some sort of
subscriptions link to SecurityFocus but what behind the screens is some other
link. You click on the link, if your Internet Explorer is vulnerable then you
will be directed to www.yahoo.com .
Actual Results:  
linked to incorrect site


http://www.hackingspirits.com/eth-hac/prf-of-conc/wsh/PoF01/remote-cmd.html

Performed test from this webpage and got results described on page. This is an
old error in IE that does not seem to be fixed in Firefox.
Redirects are part of the web. The links given are misleading, but valid. They
are used by phishers in the same way as http://www.ebay-support.com (which is
not ebay.com) is used to fool people. Firefox warns about the userinfo trick,
with a dialog that states the user is going to site "2340293409" (whatever) just
in case they really thought it was microsoft or security focus.

Merely redirecting (which any site can do) is not an exploit. The point of the
hackingspirits page is that should an exploit be known, a hacker could construct
a misleading URL to get someone there. A link saying "Free Porn!" is just as
likely to work, with nothing misleading about the URL.

The cmd.exe exploit was IE only. Firefox does not support ActiveX
Group: security
Status: UNCONFIRMED → RESOLVED
Closed: 20 years ago
Resolution: --- → INVALID
verified invalid
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.