Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1998_3

Bugtraq archives for 3rd quarter (Jul-Sep) 1998: SV: Serious Security Hole in Hotmail

SV: Serious Security Hole in Hotmail

Jonathan James (jamesMBOX304.SWIPNET.SE)
Tue, 25 Aug 1998 20:14:07 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jonathan A. Zdziarski - Systems Administrator: "Re: Serious Security Hole in Hotmail"
Previous message: Aleph One: "Administrivia"

Hello everybody.
I studied Mr. Cervenka's e-mail and then started to experiment.
There is a way to do this to a browser that has Javascripting disabled.
Just put a META REFRESH tag into the htmlfile, the URL should point to the
URL which contains the actual capturing and sending of the password/login.
This is shown in an example below.

and so on..... Thankyou for your time. Regards Jonathan James

Next message: Jonathan A. Zdziarski - Systems Administrator: "Re: Serious Security Hole in Hotmail"
Previous message: Aleph One: "Administrivia"