Yahoo Spoof mail Vulnerbility

Monday, August 10, 2015 By Jitendra , 0 comments
However This was an old Bug But I thought that i should have to Share this So here is the Bug

 Yahoo mail enables to send email from any of the email address exists like from *@microsoft.com and many other email address who doesn't have a strict DMARC policy.

 How to Reproduce:-
1. Login to your yahoo mail account and compose any email and start capturing the request.
2. Now Go to Captured Request and send it to repeater.
3. Now modify request.
2. Click on send and the email will be sent.

 I don't have the sample request so i am sharing the proof of concept video.

Yahoo is not verifying who is sending this email.
So it can be easy to spoof email from Yahoo mail servers.

I am showing you a proof of concept of it.


Stay tuned
Computer Korner will be Back in Action Soon
Feel Free To Leave A Comment If Our Article has Helped You, Support Us By Making A Small Contribution, Thank You!

About the Author

Written by CK Admins

Computer Korner is an open knowledge sharing site, where the we try to share our experience with IT, Security, Networking, System Administration tasks faced in day to day life. Articles from visitors are highly appreciated. Contact Us at : Click Here


0 comments:

Subscribe to: Post Comments (Atom)