[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Spoofing via Google

To: "Aaron Gray" <angray@xxxxxxxx>
Subject: Re: [Full-disclosure] Spoofing via Google
From: "James Matthews" <nytrokiss@xxxxxxxxx>
Date: Sat, 19 May 2007 21:26:40 -0400

Yes and it also probably charges the person who's ad is there! Google does a
blind redirect i guess now they will be a little more careful

On 5/18/07, Aaron Gray <angray@xxxxxxxx> wrote:


 An example of spoof redirection via Google :-


http://www.google.com/pagead/iclk?sa=l&ai=Br3ycNQz5Q-fXBJGSiQLU0eDSAueHkArnhtWZAu-FmQWgjlkQAxgFKAg4AEDKEUiFOVD-4r2f-P____8BoAGyqor_A8gBAZUCCapCCqkCxU7NLQH0sz4&num=5&adurl=http://cpe-24-33-241-95.twmi.res.rr.com/www.paypal.com/cgi-bin/webscr=home=p/index.php

Found on PayPal spoof email.

Aaron




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/




--
http://www.goldwatches.com/watches.asp?Brand=39
http://www.wazoozle.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Spoofing via Google
  - From: Aaron Gray

Prev by Date: [Full-disclosure] finance
Next by Date: [Full-disclosure] [CVE-2007-1355] Tomcat documentation XSS vulnerabilities
Previous by thread: [Full-disclosure] Spoofing via Google
Next by thread: [Full-disclosure] [SECURITY] [DSA 1295-1] New php5 packages fix several vulnerabilities
Index(es):
- Date
- Thread