[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Xanga Hit By Script Worm?

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Xanga Hit By Script Worm?
From: Matthew Murphy <mattmurphy@xxxxxxxxx>
Date: Sat, 31 Dec 2005 00:04:23 -0600

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Haven't seen this discussed as yet, but it appears Xanga has been hit by
a cross-site scripting (XSS) worm similar to what hit MySpace recently...

http://blogs.securiteam.com/index.php/archives/166

I will post information to the blog as I am able to figure out more
about what it does.

- --
"Social Darwinism: Try to make something idiot-proof,
nature will provide you with a better idiot."

                                -- Michael Holstein

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFDth9mfp4vUrVETTgRA38UAJ9TX7oEL8O6WGggLjg4YF+OfxCCyQCfbZ3E
H2RA/+cHJB7aXLflIk5H7a0=
=ZO2a
-----END PGP SIGNATURE-----

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure][WAY OFF TOPIC] complaints aboutthegovernemntspying!
Next by Date: [Full-disclosure] WMF: New Metasploit Framework Module
Previous by thread: [Full-disclosure] PHPDocumentor Cross-Site Scripting
Next by thread: [Full-disclosure] WMF: New Metasploit Framework Module
Index(es):
- Date
- Thread