Full Disclosure mailing list archives
Re: [Argeniss] Alert - Yahoo! Webmail XSS
From: "Response Team" <lolirt () gmail com>
Date: Mon, 17 Apr 2006 16:23:28 -0500
www.w00tynetwork.com is trying to sell CC cashing services, and www.w00tynetwork.com/news.htm is using the CreateTextRange(); exploit.
On 4/17/06, Morning Wood <se_cur_ity () hotmail com> wrote:exploit creates a frameset and redirects to http://w00tynetwork.com/x/ ,it's interesting that theredirects to http://211.22.14.50/.yahoomail/x.htm and spoofs a Yahoo login page. upon entering credentals, the site redirects back to http://mail.yahoo.com so it simply looks like a bad login. 211.22.14.50 = www.gbigift.com.tw cheers, mw _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- [Argeniss] Alert - Yahoo! Webmail XSS Cesar (Apr 17)
- Re: [Argeniss] Alert - Yahoo! Webmail XSS Morning Wood (Apr 17)
- Message not available
- Re: [Argeniss] Alert - Yahoo! Webmail XSS Response Team (Apr 17)
- Message not available
- Re: [Argeniss] Alert - Yahoo! Webmail XSS Morning Wood (Apr 17)
- Re: [Argeniss] Alert - Yahoo! Webmail XSS Morning Wood (Apr 17)
- Re: [Argeniss] Alert - Yahoo! Webmail XSS Dave "No, not that one" Korn (Apr 18)
- Re: [Argeniss] Alert - Yahoo! Webmail XSS Cesar (Apr 18)
- Re[2]: [Argeniss] Alert - Yahoo! Webmail XSS Thierry Zoller (Apr 18)
- Re: Re[2]: [Argeniss] Alert - Yahoo! Webmail XSS Cesar (Apr 18)
- Re: [Argeniss] Alert - Yahoo! Webmail XSS Morning Wood (Apr 18)
- Re: [Argeniss] Alert - Yahoo! Webmail XSS Neil Davis (Apr 18)
- Re[2]: [Argeniss] Alert - Yahoo! Webmail XSS Thierry Zoller (Apr 18)