[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Email

To: Ake Nordin <rootmoose@telia.com>, Valdis.Kletnieks@vt.edu
Subject: Re: [Full-Disclosure] Email
From: D B <geggam692000@yahoo.com>
Date: Wed, 4 Feb 2004 06:06:48 -0800 (PST)

--- Ake Nordin <rootmoose@telia.com> wrote:

> The text for human consumption retained below was in
> the mail from the outset, it has not been
> "transformed"
> to something "harmless" by any intermediate mail
> relay.
> 
> It's just the beginning of a plain MIME BASE64
> encoding,
> your favorite mail client is all too well ready to
> decode
> it back into executable format and run it, should

**snip**

ok ... the click click social engineering vulnerable
operating system everone seems to target... isnt it
file extension based ? .... very explotable ...but
also quite simple to change the extension 

why isnt a "defanger" standard on all mail gateways ?

guess im just not exposed to stupid on a corporate
scale

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free web site building tool. Try it!
http://webhosting.yahoo.com/ps/sb/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Email
  - From: Nick FitzGerald <nick@virus-l.demon.co.uk>

References:
- Re: [Full-Disclosure] Email
  - From: Ake Nordin <rootmoose@telia.com>

Prev by Date: Re: [Full-Disclosure] Email
Next by Date: RE: [Full-Disclosure] Email
Previous by thread: Re: [Full-Disclosure] Email
Next by thread: Re: [Full-Disclosure] Email
Index(es):
- Date
- Thread