MIMEスニッフィングってのがあるらしい、imgなのに引数を与えてごにょごにょさせるみたい。

Basically, a phisher takes advantage of a vulnerability in IE versions 4 through 7, where you can have the web server tell the browser that the content type is a particular type of file (jpg, png or gif), but actually render an HTML page (or whatever else).

What’s happening is that IE is “correcting” what it assumes is a mistake. The technique is explained in detail in this Heise article (thanks DJ).

Today, I saw an interesting phish, with the following URL:

acceghsh.nxt.ru/img/6.jpg?nin.ey.it/ws/e$ISAPI.dll?Sign&ru=http%3A%2F%2Fwww¬.it%2F

Or more simply,

acceghsh.nxt.ru/img/6.jpg

GFI LABS Blog: MIME sniffing

id:hasegawayosukeからブクマコメント貰った