Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

WebApp Sec: Re: attacking PHP mail() function with poorly validated email address string

Re: attacking PHP mail() function with poorly validated email address string

From: xomka <xomka1917_at_mail.ru>
Date: Sat, 5 Jun 2004 00:41:25 +0400

Hello Serg,

Thursday, June 3, 2004, 7:29:17 PM, you wrote:

SB> Hi All,

SB> I am interested to know if it i possible and if so how to exploit PHP's
SB> mail() function (not including spam) assuming user supplied email
SB> address was not validated.

SB> Cheers,
SB> Serg

I think , naturally you can send messeges from his name,
and use it for social engineering(it opened big possibilityes).
For spam certanly:))

-- 
Best regards,
 xomka                            mailto:xomka1917_at_mail.ru

Received on Jun 05 2004

This message: [ Message body ]
Next message: The Crocodile: "Re: SQL Injection"
Previous message: Rogan Dawes: "New release of WebScarab"
In reply to: Serg B.: "attacking PHP mail() function with poorly validated email address string"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]