[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] browser exploit web sites

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] browser exploit web sites
From: Nick FitzGerald <nick@xxxxxxxxxxxxxxxxxxx>
Date: Mon, 05 Nov 2007 18:36:11 +1300

Geo. wrote:

> and you get a ton of websites hosting browser exploits being used to infect 
> computers. setup.exe and a bunch of other crapola. Some of them seemed 
> pretty clever. Nothing new just figured I'd pass on the search info in case 
> anyone was researching these.

I didn't look real hard or at many of the search result pages, but I 
didn't see any exploits involved in this -- just your typical "use JS 
to (quite realistically) fake an online scan of the machine then push 
an installer .EXE" bogus anti-[adware|malware|spyware|virus] sites.

Regards,

Nick FitzGerald

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Chris-chan Christian Chandler
  - From: Bud Frank
- [Full-disclosure] browser exploit web sites
  - From: Geo.

Prev by Date: Re: [Full-disclosure] on xss and its technical merit
Next by Date: Re: [Full-disclosure] on xss and its technical merit
Previous by thread: [Full-disclosure] browser exploit web sites
Next by thread: [Full-disclosure] breaking SIP for fun and toll fraud
Index(es):
- Date
- Thread