Full Disclosure mailing list archives
Using domain whois information for fun and profit
From: "Response Team" <lolirt () gmail com>
Date: Mon, 27 Feb 2006 14:41:17 -0600
The whois information for this domain contains a <script> tag. This means if
you are to view the whois information on any HTML based page, the script is
executed.
Registrant:
DOMIBOT (CAREFREETRAVELMN-COM-DOM)
Avenida Caroni 5478
Colinas Monte, Caracas
Venezuela
+1.2085751538
<script>open('http://CAREFREETRAVELMN.COM');<http://carefreetravelmn.com%27%29/;>
</script>
+1.2085751538
domains () domibot com
Domain Name: CAREFREETRAVELMN.COM <http://carefreetravelmn.com/>
Status: PROTECTED
A google search for HTML based Whois pages turned up:
http://networking.ringofsaturn.com/Tools/whois.php
If you do a whois on carefreetravelmn.com, you get a popup window.
Should internic allow <tags> to be used in domain registration contact info?
-traid
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Using domain whois information for fun and profit Response Team (Feb 27)
- Re: Using domain whois information for fun and profit Joachim Schipper (Feb 27)
- Re: Using domain whois information for fun and profit Response Team (Feb 27)
- Re: Using domain whois information for fun and profit Joachim Schipper (Feb 27)