| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 21 Jul 2008 20:01:18 +0200 From: Peter Wiesen <broken-error@...mail.com> To: <bugtraq@...urityfocus.com> Subject: E-Mail header Injection in HiFriend ------------------------------------ -------Header Injection---------- ------------------------------------ Script: hifriend.pl Vendor: Hibyte SoftwareVersion: The free one you get from many webpages Dork: "hifriend.pl" + "cgi-bin" ------------------------------------ ---------------Infos--------------- ------------------------------------ This Exploit allows you to: * send spam * send fakemails * E-Mail spoofing Whit the google dork, you find a lot of pages using HiFriend. A lot of Servers to send spam with. Modify the source of the Exploit to change the message, your spoofed e-mail, and the receiver. Oh and you can send multiple mails! Just put a comma behind a mail adress. ------------------------------------ --------------Exploit--------------- ------------------------------------ http://perforin.dark-codez.com/Perl-Scripts/hifriend-xploit.txt ------------------------------------ ---------Visit & Greetings-------- ------------------------------------ www.DarK-CodeZ.com Greetings to all my Friends ;) _________________________________________________________________ Testen Sie Live.com - die schnelle, personalisierte Homepage, über die Sie auf alle für Sie relevanten Inhalte zentral zugreifen können. http://www.live.com/getstarted
Powered by blists - more mailing lists