[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] re: MS03-32 Social Engineering

To: <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: [Full-Disclosure] re: MS03-32 Social Engineering
From: "Michael Tighe" <mtighe@xxxxxxxxxxxxxxxxxxxx>
Date: Mon, 29 Sep 2003 15:23:47 -0400

I have been contacted twice already by experts in the field,
and thought I should be have been more clear in my description
of this "Greeting Card" Social Engineering email I received.

I have NOT investigated this site and do NOT claim it is using
any such Malware.  My boss has other work for me at the moment!  ;-)

I was merely suggesting that this was an excellent example of 
how one could use this kind of social engineering to activate 
the MS03-32 exploit - and to note that one could even double-whammy
by selling such an exploit.

Thanks to BB and others for making me understand how misleading
my post was...Sorry for any misunderstandings.

-- Michael Tighe
email: tighe@xxxxxxxxxxxxxxxxxxxx
phone: 781-676-6700
MSN Messenger: tighe@xxxxxxxxxxxxxxxxxxxx

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] Re: [ISN] Technology Firm With Ties to Microsoft Fires Executive Over Criticism
Next by Date: [Full-Disclosure] sendmail prescan() vulnerability on IRIX
Previous by thread: [Full-Disclosure] Re: [ISN] Technology Firm With Ties to Microsoft Fires Executive Over Criticism
Next by thread: [Full-Disclosure] sendmail prescan() vulnerability on IRIX
Index(es):
- Date
- Thread