lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <5F7ADC2D1EFCD3119B2D00508B6F08760F2B9FBB@usphlx19.phl.sap.corp>
From: joshua.knarr at sap.com (Knarr, Joshua)
Subject: visa XSS?

I think this is also the first sighting of the @ vulnerability in the wild.  Or am I mistaken?  It seems the tool available from Xforce does nothing to stop this.  (http://xforce.iss.net/xforce/alerts/id/159).

Thanks
Joshua Knarr

>-----Original Message-----
>From: full-disclosure-admin@...ts.netsys.com 
>[mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of 
>Mauro Flores
>Sent: Tuesday, December 23, 2003 6:45 AM
>To: full-disclosure@...ts.netsys.com
>Subject: [Full-Disclosure] visa XSS?
>
>I receive this mail today, the funny stuff is that when you 
>click on the
>link, you execute:
>http://www.visa.com:UserSession=2f6q9uuu88312264trzzz55884495&u
seroption=SecurityUpdate&StateLevel=GetFrom@...21.80.2/~gotier/verified_by_visa.htm
>
>I don't have a Visa card and I don't like that 64.21.80.2 
>which is not a
>Visa IP, AFAIK.
>Anyone else receive it??
>
>regards, Mauro Flores
>
>On Tue, 2003-12-23 at 08:29, Mauro Flores wrote:
>> -----Forwarded Message-----
>> From: Visa International Service <security@...a-security.com>
>> Subject: Visa Security Update
>> Date: 23 Dec 2003 05:24:34 -0600
>> 
>>                                                 [image]
>>                                     
>>                              Dear Customer,
>>                                     
>> Our latest security system will help you to avoid possible 
>fraud actions
>>                                   and
>>                     keep your investments in safety.
>>                                     
>>   Due to technical security update you have to reactivate 
>your account
>>                                     
>>      Click on the link below to login to your updated Visa account.
>>                                     
>>       To log into your account, please visit the Visa Website at 
>>                                     
>>                           http://www.visa.com
>>                                     
>>                    We respect your time and business.
>>                     It's our pleasure to serve you.
>>                                     
>>                                     
>>  Please don't reply to this email. This e-mail was generated 
>by a mail
>>                             handling system.
>>                                     
>>                                     
>>                                                 [image]
>>                                     
>> Copyright 1996-2003, Visa International Service Association. 
>All rights
>>                                                reserved.
>>                                     
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.netsys.com/full-disclosure-charter.html
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ