BugTraq
eBay Account Phishing with eBay Redirect Feb 13 2005 06:08AM
Steven (steven lovebug org) (1 replies)
I am not sure if this is better served by incidents or bugtraq, but in any
event here it is. I frequently get the fake looking e-mails phishing for my
Paypal, eBay, and banking login/password information. Generally the links
to the spoofed webpages are just links to a fake page with a modified A HREF
tag. However, it appears someone has found that eBay's actual page has a
command to redirect to a specified webpage. While this shouldn't be a big
risk, it still poses a small one and is being actively exploitated.

The page actually appears to link to eBay and it does, the link below is the
one I received in my inbox recently.

http://cgi4.ebay.com/ws/eBayISAPI.dll?MfcISAPICommand=RedirectToDomain&D
omainUrl=http%3A%2F%2F%32%31%31%2E%31%37%32%2E%39%36%2E%37%2FUpdateCente
r%2FLogin%2F%3FMfcISAPISession%3DAAJbaQqzeHAAeMWZlHhlWXS2AlBXVShqAhQRfhg
TDrferHCURstpAisNRqAhQRfhgTDrferHCURstpAisNRpAisNRqAhQRfhgTDrferHCUQRfqz
eHAAeMWZlHhlWXh

Simply:

http://cgi4.ebay.com/ws/eBayISAPI.dll?MfcISAPICommand=RedirectToDomain&D
omainUrl=www.website.com

Steven
steven (at) lovebug (dot) org [email concealed]

[ reply ]
Re: eBay Account Phishing with eBay Redirect Feb 14 2005 07:08PM
Josh Tolley (josh raintreeinc com) (2 replies)
Re: eBay Account Phishing with eBay Redirect Feb 15 2005 05:05AM
Nick FitzGerald (nick virus-l demon co uk)
Re: eBay Account Phishing with eBay Redirect Feb 15 2005 12:25AM
Jonathan Rockway (jrockw2 uic edu) (1 replies)
RE: eBay Account Phishing with eBay Redirect Feb 15 2005 09:47PM
Thomas T. Evans, III (ttevans hawkcorp net)


 

Privacy Statement
Copyright 2010, SecurityFocus