[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS
From: "Response Team" <lolirt@xxxxxxxxx>
Date: Mon, 17 Apr 2006 16:23:28 -0500

www.w00tynetwork.com is trying to sell CC cashing services, and
www.w00tynetwork.com/news.htm is using the CreateTextRange(); exploit.


> On 4/17/06, Morning Wood <se_cur_ity@xxxxxxxxxxx> wrote:
> >
> > > exploit creates a frameset and redirects to
> > > http://w00tynetwork.com/x/ ,it's interesting that the
> >
> > redirects to http://211.22.14.50/.yahoomail/x.htm and spoofs a Yahoo
> > login
> > page.
> > upon entering credentals, the site redirects back to
> > http://mail.yahoo.com
> > so it simply looks like a bad login.
> >
> > 211.22.14.50 = www.gbigift.com.tw
> >
> > cheers,
> > mw
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS
  - From: Cesar
- Re: [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS
  - From: Morning Wood

Prev by Date: Re: [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS
Next by Date: [Full-disclosure] [ MDKSA-2006:072 ] - Updated kernel packages fix multiple vulnerabilities
Previous by thread: Re: [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS
Next by thread: Re: [Full-disclosure] [Argeniss] Alert - Yahoo! Webmail XSS
Index(es):
- Date
- Thread