GB Flag 01376 55 60 60
Sales & Support
Search
GetDotted Domains

Viewing Thread:
"Big IE Problem"

« Back To Forum Threads

The "Freeola Customer Forum" forum, which includes Retro Game Reviews, has been archived and is now read-only. You cannot post here or create a new thread or review on this forum.

Thu 11/12/03 at 22:16
phi11ip
Regular
"Chavez, just hush.."
Posts: 11,080
Stealing this off of someone else, but it's still quite interesting/worrying.

http://www.hodgeheg.demon.co.uk/1.html

Just by doing ~something~, you can trick IE into giving all the wrong details of the site you're on. This may be a dream for scanners.

That was a completely unintentional typo too, lucky I read over it...

Can't be bothered to change it back now..
 
Report
Page:
« First
« Previous
1
2
Next »
Last (2) »
Page:
Sun 14/12/03 at 11:10
Very_Metal
Regular
"you've got a beard"
Posts: 7,442
more proof (as if it were needed) that IE sucks ass.
the sooner people switch to Mozilla, Opera or Firebird (what i'm using) the better. the fact that the Mozilla programs are free is an added bonus...
 
Report
Fri 12/12/03 at 19:46
Tyla
Regular
"l33t cs50r"
Posts: 2,956
Read this: http://www.theregister.co.uk/content/55/34447.html

Aparently it;s only IE6 which does this, and from the tests Ive done, this seems to be right! Some interesting stuff in there about using HEX value URL's
 
Report
Fri 12/12/03 at 00:08
Turbonutter
Regular
"Eff, you see, kay?"
Posts: 14,156
Incidentally this behaviour can also be emulated easily with JavaScript.
 
Report
Fri 12/12/03 at 00:07
Turbonutter
Regular
"Eff, you see, kay?"
Posts: 14,156
http://www.microsoft.com%[email protected]

It sends you to http://www.hodgeheg.demon.co.uk/, but sends you with *login information* that has username www.microsoft.com.

The http://username:[email protected]/ syntax is used for passing login information to protected pages in the URL. The %00 is an exploit which screws up the rendering engine and makes it not show text after the %00@ until \n.

I should imagine it affects all Windows platforms.
 
Report
Thu 11/12/03 at 23:25
Timmargh
Regular
"Twenty quid."
Posts: 11,452
Lucky for me I use Safari ...
 
Report
Thu 11/12/03 at 23:05
Tyla
Regular
"l33t cs50r"
Posts: 2,956
%00@
 
Report
Thu 11/12/03 at 22:55
tigamilla
Regular
"The mighty GE90-115"
Posts: 5,344
Which part of the source code causes that??
 
Report
Thu 11/12/03 at 22:47
MoneySavingExpert
Regular
Posts: 15,443
And it's damn simple to emulate... just look at the source code...
 
Report
Thu 11/12/03 at 22:46
tigamilla
Regular
"The mighty GE90-115"
Posts: 5,344
Wow!! you could have "welcome to LLoysdstsb please enter your details here" and all that...

The source code gives no clue must be the generator program...
 
Report
Thu 11/12/03 at 22:35
Chipseh
Regular
"Jog on, sunshine"
Posts: 8,979
I don't get it...
 
Report
Page:
« First
« Previous
1
2
Next »
Last (2) »
Page:

Freeola & GetDotted are rated

Check out some of our customer reviews below:

Thank you very much for your help!
Top service for free - excellent - thank you very much for your help.
LOVE it....
You have made it so easy to build & host a website!!!
Gemma

View More Reviews

Need some help? Give us a call on 01376 55 60 60

Go to Support Centre

Find Us

Freeola & GetDotted
94 Church Street
Bocking
Braintree
Essex
CM7 5JY

Our Websites

About Us

Freeola is an ISP, offering unrivalled internet services to small businesses and consumers in the UK. We offer a range of services, from broadband to web hosting. Start at cheap domain name registration, get a free website, or just browse the site. Read more about Freeola & GetDotted.

View our Customer Reviews.

Join Our Mailing list

Join the Freeola & GetDotted mailing list for exclusive deals, offers and service updates straight to your email inbox.

Sign Up to the Mailing List

It appears you are using an old browser, as such, some parts of the Freeola and Getdotted site will not work as intended. Using the latest version of your browser, or another browser such as Google Chrome, Mozilla Firefox, or Opera will provide a better, safer browsing experience for you.