Re: Shopping Carts exposing CC data

From: Louis R. Marascio (marascioat_private)
Date: Tue Apr 20 1999 - 18:18:26 PDT

Next message: Adam Brown: "Re: AOL Instant Messenger URL Crash"

Previous message: William F Harris: "Re: Go!Zilla, possible trojan"
Maybe in reply to: Joe: "Shopping Carts exposing CC data"
Next in thread: Bo Elkjaer: "Re: Shopping Carts exposing CC data"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Mercantec's SoftCart http://www.mercantec.com/
>     Platform: Win32 (*Nix?)
>     ...
>     Number of exposed installs: 1
>     PGP Option Available?: Unknown
>     NOTES:
>
>     This one has only been found vulnerable on ONE server. (user error?)
The
>     encryption scheme on the storemgr.pw password is unrecognized by me
but
>     I'm not an encryption guru.  Someone's bound to recognize it.

Make that two, I found it located on what appears to be a decently sized
regional hardware/computer sales site.

Louis

--
Louis R. Marascio
 marascioat_private
 http://www.ece.utexas.edu/~marascio

Next message: Adam Brown: "Re: AOL Instant Messenger URL Crash"
Previous message: William F Harris: "Re: Go!Zilla, possible trojan"
Maybe in reply to: Joe: "Shopping Carts exposing CC data"
Next in thread: Bo Elkjaer: "Re: Shopping Carts exposing CC data"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:43:18 PDT