How to exploit DoubleClick without really trying
We just found a little hole in DoubleClick. You can get anyone running DoubleClick’s DART Enterprise AdServer to redirect to any other web site.
Just find their ad server and edit the event.ng part so that it looks like this:
http://adserver.somecompany.com/event.ng/Type=click&Redirect=http://www.YourWebSite.com
Some porn site is doing that to us. We’re making DoubleClick fix it for us.