lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
From: nekramer at mindtheater.net (Nancy Kramer)
Subject: Confirm Your VISA Card Email

Hello All,

Just got the "confirm Your VISA Card" Email.  It uses the browser 
vulnerability where it looks like it is taking you to the VISA site but 
instead has a long URL after the part you see that seems to take you to an 
IP address.  Haven't really checked it out but and sending it along in case 
anyone is interested.  See below

<A 
HREF="http://www.visa.com%00@...%32%30%2E%36%38%2E%32%31%34%2E%32%31%33">www.visa.com</a>

The email that the user sees is html so they would just see the link.

Regards,

Nancy Kramer
Webmaster http://www.americandreamcars.com
Free Color Picture Ads for Collector Cars
One of the Ten Best Places To Buy or Sell a Collector Car on the Web

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ