[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] JavaScript worm targets Yahoo!

From: bugtraq@xxxxxxxxxxxxxxx
Subject: [WEB SECURITY] JavaScript worm targets Yahoo!
Date: Mon, 12 Jun 2006 13:04:15 -0400 (EDT)

I found this on theregister.

"A JavaScript worm that takes advantage of an unpatched vulnerability in Yahoo!'s webmail 
service has been discovered on the net.

The JS-Yamanner worm spreads when a Windows user accesses Yahoo! Mail to open an email sent 
by the worm. The attack works because of a vulnerability in Yahoo! Mail that enables scripts 
embedded within HTML emails to be run within a user’s browser instead of being blocked.

"Once executed, the worm forwards itself to an infected users' contacts on Yahoo! Mail. It 
also harvests these address and sends them to a remote internet server. Only contacts with 
an email address of either @yahoo.com or @yahoogroups.com are hit by this behaviour."

http://www.theregister.co.uk/2006/06/12/javscript_worm_targets_yahoo/


- admin_@_@_@_@_@_@_cgisecurity.com
http://www.cgisecurity.com/ Website Security news, and more
http://www.cgisecurity.com/index.rss [RSS Feed]


----------------------------------------------------------------------------
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/

The Web Security Mailing List Archives
http://www.webappsec.org/lists/websecurity/archive/

Prev by Date: Re: [WEB SECURITY] tying sessions to IP addresses
Next by Date: [WEB SECURITY] Run JSP file from Servlet
Previous by thread: [WEB SECURITY] Tagworld XSS
Next by thread: [WEB SECURITY] Run JSP file from Servlet
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site