<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<TITLE>Message</TITLE>
<META content="MSHTML 6.00.2900.2180" name=GENERATOR></HEAD>
<BODY>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff size=2>That
doesn't work any more.</FONT></SPAN></DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff
size=2>Another one, for Internet Explorer however does work that i found the
other day.</FONT></SPAN></DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff size=2>Send
yourself one using my POC :)</FONT></SPAN></DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff size=2><A
href="http://zmailhost.ath.cx/">http://zmailhost.ath.cx/</A></FONT></SPAN></DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff
size=2>or</FONT></SPAN></DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff size=2><A
href="http://zmail.zorro.hu/">http://zmail.zorro.hu/</A></FONT></SPAN></DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff size=2>php0t
/ zorro.hu</FONT></SPAN></DIV>
<DIV><SPAN class=421510004-15062006><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<BLOCKQUOTE style="MARGIN-RIGHT: 0px">
<DIV></DIV>
<DIV class=OutlookMessageHeader lang=en-us dir=ltr align=left><FONT
face=Tahoma size=2>-----Original Message-----<BR><B>From:</B>
full-disclosure-bounces@lists.grok.org.uk
[mailto:full-disclosure-bounces@lists.grok.org.uk] <B>On Behalf Of
</B>wac<BR><B>Sent:</B> Thursday, June 15, 2006 5:51 AM<BR><B>To:</B> David
Loyall<BR><B>Cc:</B> full-disclosure@lists.grok.org.uk;
abuse@yahoo.com<BR><B>Subject:</B> Re: [Full-disclosure] Vunerability in yahoo
webmail.<BR><BR></FONT></DIV>Hi folks:<BR>Can I get this file somewhere else?
Like a web site or something. This gmail thing detects it as a virus. I doub't
yahoo will let it pass still, that's wht i don;t ask anyne to send it to me
;). I wonder who asked to have an stupid scanner in the e-mail that you can't
disable. I don't even have one on my computer!!! Anyway I understand I'm not
common kind of people ;). Thanx in advance. <BR><BR>Waldo<BR><BR>
<DIV><SPAN class=gmail_quote>On 6/12/06, <B class=gmail_sendername>David
Loyall</B> <<A
href="mailto:david.loyall@gmail.com">david.loyall@gmail.com</A>>
wrote:</SPAN>
<BLOCKQUOTE class=gmail_quote
style="PADDING-LEFT: 1ex; MARGIN: 0pt 0pt 0pt 0.8ex; BORDER-LEFT: rgb(204,204,204) 1px solid">
<DIV>
<DIV>Hello, all.<BR><BR>I just received an email with an html attachment, on
a yahoo account.<BR><BR>When I opened the mail, yahoo automatically
displayed the html, and executed the code within. What the hell.
=) It forwarded the message to my contacts list, (or some other
set of addresses, dunno,) and redirected my browser to a website.
<BR><BR>I'm of to a BBQ, and I don't care about yahoo. So I'm not
even going to read the code and see how this happens. I'm
attaching the html file as a text file. Enjoy!</DIV>
<DIV> </DIV>
<DIV>Oh, I've CC'd <A onclick="return top.js.OpenExtLink(window,event,this)"
href="mailto:abuse@yahoo.com" target=_blank>abuse@yahoo.com</A>, but if
someone else would give them a proper write-up, and encourage them to close
the hole, that'd be wonderful. <BR> </DIV>
<DIV>Cheers,</DIV>
<DIV>--David Loyall<BR>Omaha, Nebraska<BR><A
onclick="return top.js.OpenExtLink(window,event,this)"
href="http://david.loyall.googlepages.com" target=_blank>David
Loyall</A></DIV></DIV><BR>_______________________________________________<BR>Full-Disclosure
- We believe in it.<BR>Charter: <A
onclick="return top.js.OpenExtLink(window,event,this)"
href="http://lists.grok.org.uk/full-disclosure-charter.html"
target=_blank>http://lists.grok.org.uk/full-disclosure-charter.html</A><BR>Hosted
and sponsored by Secunia - <A
onclick="return top.js.OpenExtLink(window,event,this)"
href="http://secunia.com/" target=_blank>http://secunia.com/</A><BR><BR><BR
clear=all></BLOCKQUOTE></DIV><BR></BLOCKQUOTE></BODY></HTML>