Full Disclosure mailing list archives

NewOrder.box.sk Inherits Severe Redirection Vulnerability

From: Aditya K Sood <zeroknock () metaeye org>
Date: Wed, 28 Mar 2007 23:19:25 +0530

Hi

Previous Rootkit.com Vulnerability have been patched.
The neworder.box.sk is famous security website.It inherits very specific 
redirection attacks. The domain forwarding or URL forwarding not only 
directly possible through the website but can be called from third party 
directly.

A very generic analysis have been undertaken based on search engine
specification.Look into the issues at:

http://zeroknock.blogspot.com/2007/03/neworderboxsk-inherits-severe.html
http://zeroknock.metaeye.org/analysis/neworder_red.xhtml

Regards
Zeroknock
http://zeroknock.metaeye.org/mlabs

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

NewOrder.box.sk Inherits Severe Redirection Vulnerability Aditya K Sood (Mar 28)
- Re: NewOrder.box.sk Inherits Severe RedirectionVulnerability Nikolay Kichukov (Mar 29)
  - Re: NewOrder.box.sk Inherits Severe RedirectionVulnerability Aditya K Sood (Mar 29)
    - Re: NewOrder.box.sk Inherits Severe RedirectionVulnerability Nikolay Kichukov (Mar 29)
    - Re: NewOrder.box.sk Inherits Severe bugtraq (Mar 30)
    - Re: NewOrder.box.sk Inherits Severe Aditya K Sood (Mar 29)