[NT] Hotfoon Automatic Browser Launch

From: SecuriTeam (support_at_securiteam.com)
Date: 11/17/04

  • Next message: SecuriTeam: "[UNIX] InetUtils TFTP Client DNS Resolving Buffer Overflows" 
    To: list@securiteam.com
Date: 17 Nov 2004 16:37:15 +0200

    The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
    - - promotion

    The SecuriTeam alerts list - Free, Accurate, Independent.

    Get your security news from a reliable source.
    http://www.securiteam.com/mailinglist.html

    - - - - - - - - -

      Hotfoon Automatic Browser Launch
    ------------------------------------------------------------------------

    SUMMARY

    " <http://www.hotfoon.com/> Hotfoon is a new type of Internet telephony
    that is very inexpensive, easy to setup and use. Hotfoon's current service
    enables you to: Make long distance calls at near local rates. Talk to
    other Hotfoon users for free." Hotfoon will automatically open URLs sent
    to the user without user intervention.

    DETAILS

    An attacker can exploit chat with user by sending a link to random user
    and Hotfoon directly open the link in IE (or the default web browser)
    without alerting the user.

    Exploit Method:
    1) Open Hotfoon program
    2) Select chat to random user
    3) In chat window ,send the URL that contains bad code such as ( XSS,
    Internet Explorer exploit or EXE file with a web downloader ..etc )
    4) The web browser or Internet Explorer (tested in Internet Explorer) will
    directly open the link without alert user

    ADDITIONAL INFORMATION

    The information has been provided by <mailto:ksa2ksa@yahoo.com> Saudi
    Linux.

    ========================================

    This bulletin is sent to members of the SecuriTeam mailing list.
    To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
    In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

    ====================
    ====================

    DISCLAIMER:
    The information in this bulletin is provided "AS IS" without warranty of any kind.
    In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

  • Next message: SecuriTeam: "[UNIX] InetUtils TFTP Client DNS Resolving Buffer Overflows"

    Relevant Pages