RE: RE: SUPER SPOOF DELUXE Re: [Full-Disclosure] Microsoft and Security

To: <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: RE: RE: SUPER SPOOF DELUXE Re: [Full-Disclosure] Microsoft and Security
From: "http-equiv@xxxxxxxxxx" <1@xxxxxxxxxxx>
Date: Fri, 2 Jul 2004 02:52:52 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Reply-to: 1@xxxxxxxxxxx


What an utterly pathetic scenario you present. Obviously you're 
blissfully unaware of the current security trend of site 
spoofing, 'phishing', url spoofing, DNS spoofing, zone spoofing 
and on and on and on.

and of course now very the latest 'security expert spoofing' !

 <!-- 

"Your subject makes it sound like this is a spoofing 
vulnerability"

You have to look at the prerequisite attack scenario. You are 
surfing to
some random site and out of nowhere it opens WellsFargo.com or
WindowsUpdate. At this point you are thinking one of 2 things, 
either 

"What the.. I didn't go to WindowsUpdate/WellsFargo .. Let me 
just close
that window .. Damn popups" 

or 

"Hey how nice, WindowsUpdate/WellsFargo magically appeared in 
front of
me and I didn't even intend to go there .. I was just surfing 
for porn
.. Let me hurridly download some stuff from there and give it my 
account
details"

 -->



-- 
http://www.malware.com

Prev by Date: Re: [Full-Disclosure] Fix for IE ADODB.Stream vulnerability is out
Next by Date: Registry Fix For Variant of Scob
Previous by thread: SUPER SPOOF DELUXE Re: [Full-Disclosure] Microsoft and Security
Next by thread: [ GLSA 200406-21 ] mit-krb5: Multiple buffer overflows in krb5_aname_to_localname
Index(es):
- Date
- Thread