Re: [Full-disclosure] LinkedIn_User Account Delete using Click jacking

[Laurelai <laurelai@xxxxxxxxxxxx>]

On 10/7/2011 9:06 PM, hfux0r wrote:
> Yeah, because it is totally safe to open up anything behind a
> Shortened URL.  The fact that the FBI is on your ass is the only
> reason I might find this safe :)
>
>
>
>
> On Oct 7, 2011, at 9:36 PM, Laurelai <laurelai@xxxxxxxxxxxx
> <mailto:laurelai@xxxxxxxxxxxx>> wrote:
>
>> On 10/7/2011 3:23 PM, Naresh Jha wrote:
>>> Guys - Correct me if I am wrong but wouldn't macro enabled document
>>> be like .docm as per Word 2007+???
>>>
>>> I mean its a docx file right ....like zip file ... we can extract
>>> the contents after changing it into zip ...can't we ???
>>>
>>> JT
>>>
>>> On Fri, Oct 7, 2011 at 5:41 PM, Ferenc Kovacs <tyra3l@xxxxxxxxx
>>> <mailto:tyra3l@xxxxxxxxx>> wrote:
>>>
>>>     > The document appears to be password protected as well. Ive
>>>     tried to open it
>>>     > in a VM and it prompts for a password.
>>>
>>>     it seems that you missed it:
>>>     "Password to access the report is:  8nj98F4h9AW"
>>>
>>>     --
>>>     Ferenc Kovács
>>>     @Tyr43l - http://tyrael.hu
>>>
>>>     _______________________________________________
>>>     Full-Disclosure - We believe in it.
>>>     Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>>>     Hosted and sponsored by Secunia - http://secunia.com/
>>>
>>>
>> I posted the extracted content already :)
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
its not a shortened url, its a download/upload service like rapidshare,
had you actually clicked it you would know how dumb what you said was.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/