Cyber Security Expo
 
I Know Something You Don't Know (Email Secrets) by Bob Radvanovsky on 15/08/04

This paper provides an overview about an unchecked feature of the SMTP protocol, called 'Message-ID:'; unfortunately, this little feature may be required, thus making its removal difficult. Exploits may include: text-based steganography (I currently have a proof-of-concept process, although kludgy, *does* work) to hidden activation or deactivation codes of malicious or hidden code within aany MIME-encapsulated header.

This document is in PDF format. To view it click here.

Rate this article

All images, content & text (unless other ownership applies) are © copyrighted 2000 -  , Infosecwriters.com. All rights reserved. Comments are property of the respective posters.