[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: whooh Nellie! was(Re: Problems, who can help??)

To: javascript@obscure.org
Subject: Re: whooh Nellie! was(Re: Problems, who can help??)
From: Don Moore <moore@futureone.com>
Date: Tue, 5 Mar 1996 21:25:07 -0700 (MST)
Cc: javascript@obscure.org
In-reply-to: <9603051820.ZM4428@iris>
Reply-to: javascript@obscure.org
Sender: owner-javascript@obscure.org

no he is not saying impresonate someone else

what is saying with that mailto: with the METHOD=POST trick you can send 
mail in the background (several scriptss already do this and exploit 
this).

One of the interesting side affects is that you can autosubscribe someone 
to a mailing list or put this script on your page so you could harrass 
someone else without any mail coming from your account.


      .                 .
        ______ ______ .
     .:_\_ .  \\_ .  \_::.    Email: mindrape@goodnet.com
  . .::./ ./  // ./__/.:::. .         staheli@goodnet.com
     :_<_____/<____  >_:.       
     .             \/  .        WWW: http://www.futureone.com/~damaged

     Damaged Cybernetics



On Tue, 5 Mar 1996, Brian Karlak wrote:

> On Mar 5,  4:45pm, Lance D. Braud wrote:
> 
> > Holy shit!  Excuse my language.  It did grab my email address.  Not only
> > that, but it sent an email message "AS ME"!!  I didn't know about that, and
> > that isn't too cool.  I don't mind being able to sniff out the email address,
> > but being able to impersonate me is different.  My respect to the guy/gal
> > that figured out how to do that.
> >
> > I definatly stealing this script, but I'm not going to be sending email as
> > someone else - that SHOULD be removed.
> 
> That's not JavaScript, that's mail spoofing.  Hope nobody's gonna spill the
> beans on that one here . . . too many punks know how to do it already.
> 
> But it has *nothing* to do with JavaScript.
> 
> Brian
> 
> 
> -- 
>   d a t a b a s e s    a r e   i n   o u r  g e n e s
>   ----------------------------------------------------
>   Brian Karlak   bkarlak@panbio.com  (510) 337-7910 ph
>   Manager, SciApps Group             (510) 522-9394 fx
>   ----------------------------------------------------
>   P  A  N  G  E  A     S  Y  S  T  E  M  S     I  N  C
> --------------------------------------------------------------------
> For help about the list, please send a message to 'majordomo@obscure.org'
> with the message body 'help'. To unsubscribe, send a message to
> 'majordomo@obscure.org' with the message body 'unsubscribe javascript'.
> List archives and pointer to FAQ: http://www.obscure.org/javascript/
> 
--------------------------------------------------------------------
For help about the list, please send a message to 'majordomo@obscure.org'
with the message body 'help'. To unsubscribe, send a message to
'majordomo@obscure.org' with the message body 'unsubscribe javascript'.
List archives and pointer to FAQ: http://www.obscure.org/javascript/

References:
- Re: whooh Nellie! was(Re: Problems, who can help??)
  - From: "Brian Karlak" <bkarlak@panbio.com>

Prev by Date: Re: What's New
Next by Date: Cookei Grabbing :)
Previous by thread: Re: whooh Nellie! was(Re: Problems, who can help??)
Next by thread: Re: whooh Nellie! was(Re: Problems, who can help??)
Index(es):
- Date
- Thread