Full Disclosure mailing list archives
RE: Confirm Your VISA Card Email
From: "Bill Royds" <full-disclosure () royds net>
Date: Sun, 25 Jan 2004 20:33:13 -0500
Interesting quirk in that URL. It uses a null byte (%00) to prevent display of the rest of the URL (which points to a Korean IP), but this sometimes causes a browser to drop the rest of the URL as well and actually go to Visa.com. Phisher was being a bit too smart for him/herself. -----Original Message----- From: full-disclosure-admin () lists netsys com [mailto:full-disclosure-admin () lists netsys com] On Behalf Of yossarian Sent: January 25, 2004 7:41 PM To: Nancy Kramer; full-disclosure () lists netsys com Subject: Re: [Full-disclosure] Confirm Your VISA Card Email http://www.visa.com/globalgateway/gg_selectcountry.html?retcountry=1 is where the URL takes me. Looks like just a scam to harvest mail adresses. I had something alike from ebay, just a webbug linking it to somewhere else. Dunno of ebay has already taken action - i sent it there just to make sure. I can;t check since you just gave the URL - not check the pics for other link. ----- Original Message ----- From: "Nancy Kramer" <nekramer () mindtheater net> To: <full-disclosure () lists netsys com> Sent: Sunday, January 25, 2004 8:16 PM Subject: [Full-disclosure] Confirm Your VISA Card Email
Hello All, Just got the "confirm Your VISA Card" Email. It uses the browser vulnerability where it looks like it is taking you to the VISA site but instead has a long URL after the part you see that seems to take you to an IP address. Haven't really checked it out but and sending it along in
case
anyone is interested. See below <A
HREF="http://www.visa.com%00@%32%32%30%2E%36%38%2E%32%31%34%2E%32%31%33">www .visa.com</a>
The email that the user sees is html so they would just see the link. Regards, Nancy Kramer Webmaster http://www.americandreamcars.com Free Color Picture Ads for Collector Cars One of the Ten Best Places To Buy or Sell a Collector Car on the Web _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Confirm Your VISA Card Email Nancy Kramer (Jan 25)
- Re: Confirm Your VISA Card Email yossarian (Jan 25)
- RE: Confirm Your VISA Card Email Bill Royds (Jan 25)
- RE: Confirm Your VISA Card Email Nick FitzGerald (Jan 25)
- RE: Confirm Your VISA Card Email Bill Royds (Jan 25)
- Re: Confirm Your VISA Card Email yossarian (Jan 25)