Bugtraq mailing list archives
ValueClick
From: ellen () VALUECLICK COM (Ellen)
Date: Sat, 19 Dec 1998 19:57:20 -0500
Hi, Please allow me to introduce myself. My name is Ellen O'Rourke and I am Host Member Manager for ValueClick. I would like to refer to the letter you wrote BUGTRAQ () NETSPACE ORG regarding "ValueClcik vernerability." Let me explain: If the user decides to go to another site after they are logged in, either via a bookmark or typing in a url, the referring url will be blank. If we had a link to the outside, the referring url would contain the logged in user's username and password. The links that we do have to the outside, such as on the exclude banners page where a user can click on a banner to view the advertiser's site, have the referring url stripped off to protect the host's login info. If you have evidence that contradicts this, we would very much appreciate your advising us. We appreciate your interest in ValueClick. --------------------------------------------------------- Ellen O'Rourke Member Site Manager ellen () valueclick com ValueClick The pay-for-results advertising network! ValueClick Banner Ad Network http://www.valueclick.com ---------------------------------------------------------
Current thread:
- OSS nice tmp race Stefan Laudat (Dec 16)
- wordperfect 8 for linux security Edsel Adap (Dec 18)
- new tcp scan method antirez (Dec 17)
- Re: wordperfect 8 for linux security Dug Song (Dec 18)
- Re: wordperfect 8 for linux security Keith Owens (Dec 18)
- Irc: another funny stuff. In some irc clients dcc may be hijacked. awgn () COSMOS IT (Dec 19)
- ValueClick CGI Vulnerability Philip Stoev (Dec 19)
- FTP.SODRE.NET Hacked... Eggdrop Modified.. Geoffrey Huntley (Dec 19)
- Re: FTP.SODRE.NET Hacked... Eggdrop Modified.. Matt Hallacy (Dec 19)
- ip header id patched. awgn () COSMOS IT (Dec 19)
- ValueClick Ellen (Dec 19)
- Re: OSS nice tmp race Pavel Kankovsky (Dec 18)
- Re: OSS nice tmp race Dr. Mudge (Dec 18)
- Re: OSS nice tmp race Joel Eriksson (Dec 18)
- OSS nice tmp race the razor of love (Dec 18)
- <Possible follow-ups>
- Re: OSS nice tmp race Crispin Cowan (Dec 20)
- Re: OSS nice tmp race X-Force (Dec 21)
- AOL client uses IP tunneling Aviram Jenik (Dec 21)
- Re: your mail Craig A. Huegen (Dec 21)
- Re: your mail Alan Cox (Dec 22)
- wordperfect 8 for linux security Edsel Adap (Dec 18)