| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <001d01c3184c$e48071f0$010a000a@POOH> From: daniel at pooh.cz (Daniel Dočekal) Subject: MSN Webcam / Chat Spoof Browser Plugin is ADULT DIALER - it connects via modem to telephone service and you pay your sexy adventure through your telephone bill. In many cases, there are adult dialers committing fraud - they redirect your dial-up internet connection to very expensive number without your knowledge. -----Original Message----- From: full-disclosure-admin@...ts.netsys.com [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Richard M. Smith Sent: Monday, May 12, 2003 3:40 AM To: full-disclosure@...ts.netsys.com; secure@...rosoft.com Subject: RE: [Full-Disclosure] MSN Webcam / Chat Spoof You missed the good part. If you actually go to the "MSN" Web site and press the "Connect Now" button, the site tries to download some questionable ActiveX control. Not to worry however: Just press YES in the dialog box when it appears. This operation is totally safe and certified by Microsoft AuthenticodeT The control is signed by "Browser Plugin". I guess Thawte will give anyone an Authenticode certificate nowadays. I wonder who "Browser Plugin" really is? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030512/7498bcf8/attachment.html
Powered by blists - more mailing lists