phishing detection bug
John French
john.french at EMICH.EDU
Fri Feb 18 15:42:54 GMT 2005
The problem definitely seems to be when the href= doesn't contain a url,
but the text between the > and </a> does. Here's another example:
before:
<body bgcolor="#ffffff" text="#000000">
test <a href="thisisnotaurl">http://thisisaurl.com</a> test<br>
</body>
after:
<body bgcolor="#ffffff" text="#000000">
test <a href="thisisnotaurl"></b></font><font
color="red"><b>MailScanner has detected a possible fraud attempt
from "thisisnotaurl" claiming to be</b></font> <font
color="red"><b>MailScanner has detected a possible fraud attempt
from "thisisnotaurl" claiming to be http://thisisaurl.com</a> test<br>
</body>
------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the website!
More information about the MailScanner
mailing list