[NT] Hotfoon Automatic Browser Launch
From: SecuriTeam (support_at_securiteam.com)
Date: 11/17/04
- Previous message: SecuriTeam: "[NEWS] Insecure FTP Access in HP PSC 2510 Printers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: list@securiteam.com Date: 17 Nov 2004 16:37:15 +0200
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
Hotfoon Automatic Browser Launch
------------------------------------------------------------------------
SUMMARY
" <http://www.hotfoon.com/> Hotfoon is a new type of Internet telephony
that is very inexpensive, easy to setup and use. Hotfoon's current service
enables you to: Make long distance calls at near local rates. Talk to
other Hotfoon users for free." Hotfoon will automatically open URLs sent
to the user without user intervention.
DETAILS
An attacker can exploit chat with user by sending a link to random user
and Hotfoon directly open the link in IE (or the default web browser)
without alerting the user.
Exploit Method:
1) Open Hotfoon program
2) Select chat to random user
3) In chat window ,send the URL that contains bad code such as ( XSS,
Internet Explorer exploit or EXE file with a web downloader ..etc )
4) The web browser or Internet Explorer (tested in Internet Explorer) will
directly open the link without alert user
ADDITIONAL INFORMATION
The information has been provided by <mailto:ksa2ksa@yahoo.com> Saudi
Linux.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: SecuriTeam: "[NEWS] Insecure FTP Access in HP PSC 2510 Printers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
