[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: a dangerous fast spreading (yet simple) trojan horse.

To: bugtraq@securityfocus.com
Subject: Re: a dangerous fast spreading (yet simple) trojan horse.
From: Andreas Reich <cyraxx@scention.de>
Date: Mon, 27 Oct 2003 17:43:27 +0100

Gadi Evron wrote:
> The jpeg is actually an HTML file, and when the web browser receives it,
> it thinks that it is a server error message for the file not existing,
> and loads the page.

Not necessarily. Often it is just a directory named xyz.jpg. The browser then gets redirected to /url/xyz.jpg/ and loads the index.html there.

-Andreas

Follow-Ups:
- Re: a dangerous fast spreading (yet simple) trojan horse.
  - From: Craig Holmes <Leusent@absolut.intellihost.ca>

References:
- a dangerous fast spreading (yet simple) trojan horse.
  - From: "Gadi Evron" <ge@egotistical.reprehensible.net>

Prev by Date: Re: Java 1.4.2_02 InsecurityManager JVM crash
Next by Date: Re: CensorNet: Cross Site Scripting Vulnerability
Previous by thread: a dangerous fast spreading (yet simple) trojan horse.
Next by thread: Re: a dangerous fast spreading (yet simple) trojan horse.
Index(es):
- Date
- Thread