[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] RE: Spam Solution

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] RE: Spam Solution
From: Max Mustermann <anonymous@xxxxxxxxxxxxxxxxxxxx>
Date: Sat, 19 Jun 2004 02:25:33 +0200

Larry Seltzer wrote:

> SMTP AUTH cracking and using the ISP account? Not that it can't and won't be 
> done, but
> I'm aware of no actual examples. Could you cite one please?

Correct me if I'm wrong. One worm some time ago even _asked_ users to enter
their SMTP AUTH credentials. And it spread quite well. Attach a spam engine 
and reduce its spreading rate to stay under the AV radar as long as 
possible and you're set.

Was it SWEN? Or one of the encrypted ZIP thingies? I can't remember but it 
happened.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] RE: Spam Solution
  - From: Larry Seltzer

References:
- RE: [Full-Disclosure] Spam Solution
  - From: Larry Seltzer

Prev by Date: Re: [Full-Disclosure] User auto added to Outlook Express contacts
Next by Date: [Full-Disclosure] [SECURITY] [DSA 522-1] New super packages fix format string vulnerability
Previous by thread: Re: [Full-Disclosure] Spam Solution
Next by thread: RE: [Full-Disclosure] RE: Spam Solution
Index(es):
- Date
- Thread