And infact that is the very way that people have been taking out these exploitable Cisco routers, is with raw sockets. It's also how the "net send" advertisements (the ads witht he "ok" button) are being send. They modify the headers of the message and the body and take advantage of the Messenger Service. They make the "From Address" their company name, and body of it anything they wish.
