Internet Explorer URL Display problem
Daniel Bird
dbird at SGHMS.AC.UK
Wed Dec 10 20:58:55 GMT 2003
Julian Field wrote:
> At 20:40 10/12/2003, you wrote:
>
>> Ken Anderson wrote:
>>
>>> So, combining the suggestions so far - are we getting close?
>>>
>>> describe IE6_URL_VULN Body of email contains %01@ in a url
>>> uri IE6_URL_VULN /\.[a-zA-Z]{2,4}%01\S+@/
>>> score IE6_URL_VULN 10.0
>>
>>
>> Just ran that through Regex coach and could not find any false matches,
>> or character combos that would be missed, so I say yay!
>
>
> How about this:
> http://www.microsoft.com%20%01%20@nasty.hacker.com/hohoho
> That will appear to be
> http://www.microsoft.com
> and yet you won't catch it.
>
>
Yep, just worked that one out! I thin the URI match on your original
rule would be best:
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the MailScanner
mailing list