default wrote:

> This is the first time I've seen this type hijacking and wondered how
> to counter it.
>
> I went to a site that wanted me to fill out a form for a password to
> download a freeware program - seems to be a real electronics technical
> site and downloading a beta test of a schematic drawing and simulation
> program.
>
> http://members.ol.com.au/score/ the web site and software is called
> "score"
>
> Anyhow I put my throw away mail address in the on line form to get the
> password ("evaluation2") and it opens my email program which I cancel
> out and submit the form. I get the password reply with both my throw
> away address and my "return to" address (not the ISP address but my
> forwarding account that is in the "return to" field on the messenger
> software).
>
> What can I do to see that this won't happen again? Short of changing
> the "return to" field each and every time I submit a form. Java
> script was not enabled nor were cookies (near as I can tell). The sent
> folder in my email program shows no emails being sent to that company.
>
> Any ideas? I use netscape messenger and mozilla browser

The form action for that site is MAILTO. This will attempt to pop up your
e-mail client if it's linked to your browser. However there should have been
ample opportunity for you to have rejected this action.

What do you mean you "cancel out and submit the form"? Submitting the form is a
request to e-mail. Your explanation doesn't make sense.