Sunbelt Blog: MIME sniffing(情報元のブックマーク数)
MIMEスニッフィングってのがあるらしい、imgなのに引数を与えてごにょごにょさせるみたい。
Basically, a phisher takes advantage of a vulnerability in IE versions 4 through 7, where you can have the web server tell the browser that the content type is a particular type of file (jpg, png or gif), but actually render an HTML page (or whatever else).
GFI LABS Blog: MIME sniffing
What’s happening is that IE is “correcting” what it assumes is a mistake. The technique is explained in detail in this Heise article (thanks DJ).
Today, I saw an interesting phish, with the following URL:
acceghsh.nxt.ru/img/6.jpg?nin.ey.it/ws/e$ISAPI.dll?Sign&ru=http%3A%2F%2Fwww¬.it%2F
Or more simply,
acceghsh.nxt.ru/img/6.jpg
id:hasegawayosukeからブクマコメント貰った
やっぱり思った通り「IEのContent-Type無視」ネタですよね。
id:hasegawayosuke
元記事読んだけど、特段たいした話じゃなかった。MIME Sniffの応用についてはhttp://www.atmarkit.co.jp/fcoding/articles/webapp/02/webapp02a.htmlとか読めばいいと思うよ。