Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: javascript hotmail password trap

From: david () KASEY UMKC EDU (David L. Nicol)
Date: Mon, 26 Apr 1999 02:18:08 -0500

ha ha.

No, it wasn't a traditional password trap (like yours) but
a javascript which takes advantage of cookie-based security
hooks to contact hotmail's database and change your password.




frisco wrote:


Is that originating page anything like
http://www-personal.wccnet.org/~frisco/code/assorted/hotmail.html
?  It's a page i made a while back to describe some security issues to
some co-workers.

just curious.

-f
http://www.peruano.org/



________________________________________________________________________
  David Nicol 816.235.1187 UMKC Network Operations david () news umkc edu
    "If you're calling about the Nobel prize, press 4"  GPG+ P+++ e*
Previous By Date Next
Previous By Thread Next

Current thread: