Full Disclosure: NewOrder.box.sk Inherits Severe Redirection Vulnerability

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

NewOrder.box.sk Inherits Severe Redirection Vulnerability

From: Aditya K Sood <zeroknock () metaeye org>
Date: Wed, 28 Mar 2007 23:19:25 +0530

Hi

Previous Rootkit.com Vulnerability have been patched.
The neworder.box.sk is famous security website.It inherits very specific 
redirection attacks. The domain forwarding or URL forwarding not only 
directly possible through the website but can be called from third party 
directly.

A very generic analysis have been undertaken based on search engine
specification.Look into the issues at:

http://zeroknock.blogspot.com/2007/03/neworderboxsk-inherits-severe.html
http://zeroknock.metaeye.org/analysis/neworder_red.xhtml

Regards
Zeroknock
http://zeroknock.metaeye.org/mlabs

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

NewOrder.box.sk Inherits Severe Redirection Vulnerability Aditya K Sood (Mar 28)
- Re: NewOrder.box.sk Inherits Severe RedirectionVulnerability Nikolay Kichukov (Mar 29)
  - Re: NewOrder.box.sk Inherits Severe RedirectionVulnerability Aditya K Sood (Mar 29)
    - Re: NewOrder.box.sk Inherits Severe RedirectionVulnerability Nikolay Kichukov (Mar 29)
    - Re: NewOrder.box.sk Inherits Severe bugtraq (Mar 30)
    - Re: NewOrder.box.sk Inherits Severe Aditya K Sood (Mar 29)