lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <daeeb7f30602271241ufff000bh66ce4cb1fa27a8c6@mail.gmail.com>
Date: Mon Feb 27 20:41:23 2006
From: lolirt at gmail.com (Response Team)
Subject: Using domain whois information for fun and profit

The whois information for this domain contains a <script> tag. This means if
you are to view the whois information on any HTML based page, the script is
executed.

Registrant:
   DOMIBOT (CAREFREETRAVELMN-COM-DOM)
   Avenida Caroni 5478
   Colinas Monte, Caracas
   Venezuela
   +1.2085751538
   <script>open('http://CAREFREETRAVELMN.COM');<http://carefreetravelmn.com%27%29/;>
</script>
   +1.2085751538
   domains@...ibot.com

   Domain Name: CAREFREETRAVELMN.COM <http://carefreetravelmn.com/>
   Status: PROTECTED

A google search for HTML based Whois pages turned up:
http://networking.ringofsaturn.com/Tools/whois.php
If you do a whois on carefreetravelmn.com, you get a popup window.

Should internic allow <tags> to be used in domain registration contact info?

-traid
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060227/d1b6e2ef/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ