Network Security: Detailed info on [Full-disclosure] Multiple websites iframe vulnerability

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

Subject:	[Full-disclosure] Multiple websites iframe vulnerability
Date:	Sun, 29 Oct 2006 04:00:40 +0100

Subject:

[Full-disclosure] Multiple websites iframe vulnerability

Date:

Sun, 29 Oct 2006 04:00:40 +0100

I am writing to you these lines in order to inform you of the latest security research results regarding iframe spoofing, available at - eof-project.net - What you will find is a list of 70 websites vulnerable to iframe spoofing attacks. The websites are mostly german and 30 of those sites are bank sites. Together with the above mentioned information you will also find an example showing how this vulnerability can be easily used for phishing attacks. Yours, SkyOut/EOF-Project/Helith _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-disclosure] Multiple websites iframe vulnerability, SkyOut <=

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: [Full-disclosure] [ Capture Skype trafic ], Peter Thoenen
Next by Date:	Re: [Full-disclosure] [ Capture Skype trafic ], Brian Eaton
Previous by Thread:	[Full-disclosure] Signature for new bot?, Line Noise
Next by Thread:	[Full-disclosure] MS are doing Windows Updates for XP to IE7, Aaron Gray
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: [Full-disclosure] [ Capture Skype trafic ], Peter Thoenen

Next by Date:

Re: [Full-disclosure] [ Capture Skype trafic ], Brian Eaton

Previous by Thread:

[Full-disclosure] Signature for new bot?, Line Noise

Next by Thread:

[Full-disclosure] MS are doing Windows Updates for XP to IE7, Aaron Gray

Indexes:

[Date] [Thread] [Top] [All Lists]