Bugtraq: Re: Capital One's website inadvertently assists phishing

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Capital One's website inadvertently assists phishing

From: Allen Parker <infowolfe () gmail com>
Date: Tue, 19 Apr 2005 14:27:56 -0800

Just tested, seems fixed.

On 4/19/05, Joseph Barillari <bugtraq () barillari org> wrote:

Capital One's website has an unchecked redirect. I'm used to seeing
these exploited by slashdot trolls (e.g., sending people to the goatse
picture when they think they're going to microsoft.com), but this is
the first case in which I've seen one at a bank's website.

<snip>

-- 
________________________________________
To avoid being added to my spam filter:
1. Utilize list replies unless otherwise requested.
2. If you DO send me a personal email, use english.
3. HTML isn't cute. It belongs on the web, not in my inbox.

By Date By Thread

Current thread:

Capital One's website inadvertently assists phishing Joseph Barillari (Apr 19)
- Message not available
  - Re: Capital One's website inadvertently assists phishing Joseph Barillari (Apr 20)
- Re: Capital One's website inadvertently assists phishing Allen Parker (Apr 20)
- <Possible follow-ups>
- RE: Capital One's website inadvertently assists phishing Rager, Anton (Anton) (Apr 28)