[<prev] [next>] [day] [month] [year] [list]
Message-ID: <448DEA8F.6030401@science.org>
Date: Mon, 12 Jun 2006 12:28:31 -1000
From: Jason Coombs <jasonc@...ence.org>
To: Full-Disclosure <full-disclosure@...ts.grok.org.uk>,
bugtraq@...urityfocus.com
Subject: ZoneEdit.com Forcing Pop-Unders on
WebForward-Configured Domains
Problem:
DNS service ZoneEdit.com now owned by MyDomains.com has started forcing
JavaScript pop-Unders onto users' browsers when the domain owner uses
the ZoneEdit WebForward feature.
References:
www.zoneedit.com
www.mydomains.com/support.php
www.casalemedia.com/contact.html
Details:
Casale Media, Inc. is the Pop-Under Spammer responsible for paying My
Domains cash money to distribute this crap to users. Example script
shown below, embedded within the WebForward "Cloaking" frame.
script language="JavaScript" src="http://as.casalemedia.com/sd?s=65701&f=1"
Possible Resolutions:
Stop using ZoneEdit for backup/failover or primary DNS service.
Remove the economic incentive to lie, cheat and steal.
Prosecute the offenders and send them to prison.
Send/Fax your objections to ZoneEdit/MyDomains
Correspondence or payment by check may be sent to our office at:
ZoneEdit, Inc.
111 Broadway, 11th Floor
New York, NY 10006
Fax: +1 (847) 461-1893
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists