far Posted November 17, 2006 Share Posted November 17, 2006 Guys on my company website I have this page: http://www.asiashow.co.uk/booking/pack/ Everytime someone sends a request for a pack I get an email. However today I have received tons of emails generated from this page but they read as follows: -------------------------------------------------------------- User Information: Clear: [email protected] other: [email protected], [email protected] Company: [email protected] address: [email protected] Submit: [email protected] Email: hen Content-Type: multipart/alternative; boundary=dd25c7e53925b21bc823b50df6ac24d2 X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.17 i686) Subject: nion status rotected esignation of rigin and as cc: [email protected] cc: [email protected] cc: [email protected] cc: [email protected] cc: [email protected] cc: [email protected] cc: [email protected] cc: [email protected] cc: [email protected] cc: [email protected] --dd25c7e53925b21bc823b50df6ac24d2 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain breakfast, and the lster fry, for example --dd25c7e53925b21bc823b50df6ac24d2-- . , [email protected] Phone: [email protected] post: [email protected] Contact: [email protected] ----------------------------------------------- Usually genuine ones generated from this page look like this: User Information: Company Name: ISK BEVERAGES. BATEEL Phone: 0870xxxxxxxxx Contact Name: xxxxxxxxxxx Email: [email protected], send by email address: xxxxxxxxxxxx xxxxxxxxxxx xxxxxxxxxxxxxxxxxxx xxxxxxxxx Other: Can you please send the information asap. Thanking you in advance., wheredidyouhear: Other Submit: Submit ----------------------------------------------- Link to comment Share on other sites More sharing options...
Pete Posted November 17, 2006 Share Posted November 17, 2006 I'd guess someone is trying to use vulnerabilities in your form to send spam through. You should make sure it can only send to your destination email address and no other. Link to comment Share on other sites More sharing options...
far Posted November 17, 2006 Author Share Posted November 17, 2006 thanks Pete - that puts my mind at rest, thought they might break into my website or something! Link to comment Share on other sites More sharing options...
Pete Posted November 17, 2006 Share Posted November 17, 2006 A manual look at your web logs will confirm this. Check for unusual lines with SQL in. Disable ASP debugging to prevent useful error codes being returned (which will aid an attacker to get info). Link to comment Share on other sites More sharing options...
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now