[Full-disclosure] XWW - Cross webmail Worm - PoC
Rosario Valotta
rosario.valotta at gmail.com
Tue Jul 10 00:28:32 BST 2007
Hi,
I realized a PoC of what I define a XWW - Cross webmail worm, based on
exploitation of XSS vulnerabilities.
For the PoC I've tested the worm code on 4 popular Italian webmails:
o Libero.it
o Tiscali.it
o Lycos.it
o Excite.com
Detailed informations and a video can be found at:
http://rosario.valotta.googlepages.com/home
Regards,
Rosario Valotta
rosario dot valotta at gmail.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070710/8608cbea/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.