[Full-disclosure] Yahoo! Mail Username Information Disclosure Vulnerability

Yahoo! Mail Username Information Disclosure Vulnerability By Sowhat 2005.05.23 http://secway.org/advisory/ad20050523.txt Vendor Yahoo! Inc. OverView: Yahoo! Mail (http://mail.yahoo.com) is one of the Web's largest, most popular free email providers.Yahoo! Mail helps people stay in touch at

[Full-disclosure] Re: Defeating Microsoft WGA Validation Check

The proof is in the date that the article was posted, I posted my article weeks ago on the 9th of May, that news.com article was posted on the 23rd. This can also be proven by looking at when it was indexed by various bots, eg: google or the way back machine. Justin Allen (a.k.a. poedguy)

[Full-disclosure] Re: Defeating Microsoft WGA Validation Check

news.com posted an article with the title "Bypass found for Windows piracy check" which still calls Debasis Mohanty founder of this crack.But they cant really know who found it first because their only source to the article is THIS mailing list and the article is based on Debasis Mohanty's discl

Re: [Full-disclosure] Defeating Microsoft WGA Validation Check

This was posted on xillioncomputers.com on May 9 and can be found at: http://www.xillioncomputers.com/modules.php?name=News&file=article&sid=336 The timestamp they are referring to has nothing to do with the application you download, WGA does not do anything to the application. It simply "veri

[Full-disclosure] Re: WGA validation cracked - by poedguy from xillion first!

this has already been discovered by poedguy from Xillion Computers http://www.xillioncomputers.com/modules.php?name=News&file=categories&op=newindex&catid=2 poedguy reported how to crack Windows Genuine Advantage over 2 weeks ago ___ Full-Disclosure -

[Full-disclosure] [ISR] Zyxel Prestige 650R-31 Denial Of Service

Hi Here is Attched the Prestige 650R-31 Advisorie it's already published over Bugtraq Cheers || || Infobyte Security Research || www.infobyte.com.ar || 04.08.2005 || .:: SUMMARY Prestige 650R-31 (ADSL Router) -CPU exausting handling malformed fragmented

Re: [Full-disclosure] RE: Security issue in Microsoft Outlook

On Mon, May 23, 2005 at 01:25:35PM -0700, David Cleveland wrote: > I was able to duplicate. After creating the url link, I put the cursor > right after the 'www.' And typed in the 'foo-labs.info'. Then I delete > everything after 'info' and sent it. The link read foo-labs and went to > cybertrio

[Full-disclosure] XSS in Sambar Server version 6.2

- Sambar - AFFECTED PRODUCTS:== Sambar Server 6.2 http://www.sambar.com/ OVERVIEW: = Sambar is an all-in-one and fully functional Web, HTTP, HTTPS, Mail, IRC, Syslog, Proxy and FTP server. HISTORY: 17th April 2005 - First discovered17th April

[Full-disclosure] [ GLSA 200505-18 ] Net-SNMP: fixproc insecure temporary file creation

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200505-18 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - -

RE: [Full-disclosure] RE: Security issue in Microsoft Outlook

I was able to duplicate. After creating the url link, I put the cursor right after the 'www.' And typed in the 'foo-labs.info'. Then I delete everything after 'info' and sent it. The link read foo-labs and went to cybertrion. -David -

Re: [Full-disclosure] RE: Security issue in Microsoft Outlook

I was not able to duplicate this with Outlook 2003. Both URLs were visible, only the cybertrion URL was hotlinked, with no space inbetween the two. i.e.: http://www.foo-labs.infohttp://www.cybertrion.com On 5/23/05, Keenan Smith <[EMAIL PROTECTED]> wrote: > I was not able to duplicate this. >

[Full-disclosure] [ GLSA 200505-17 ] Qpopper: Multiple Vulnerabilities

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200505-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - -

[Full-disclosure] RE: Security issue in Microsoft Outlook

I was not able to duplicate this. Typing over the existing URL replaced both the displayed and link text. Could anyone else duplicate? Keenan -Original Message- From: Bakchodiya [mailto:[EMAIL PROTECTED] Sent: Wednesday, May 18, 2005 4:28 PM To: bugtraq@securityfocus.com Cc: full-dis

[Full-disclosure] Format string and crash in Warrior Kings 1.3 and Battles 1.23

### Luigi Auriemma Application: Warrior Kings: Battles http://www.warriorkingsbattles.com Warrior Kings http://www.empireinteractive.com/games/product.a

[Full-disclosure] Computer Associates Vet Antivirus Library Remote Heap Overflow

Date May 23, 2005 Vulnerability Computer Associates Vet library provides antivirus scan engine capabilities. Vet scan engines allow products to analyze various streams for malware. Vet is vulnerable to an integer wrap during the analysis of an OLE stream. The integer wrap causes an arbitrary he

[Full-disclosure] [USN-132-1] ImageMagick vulnerabilities

=== Ubuntu Security Notice USN-132-1 May 23, 2005 imagemagick vulnerabilities CAN-2005-1275 === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty

[Full-disclosure] Defeating Microsoft WGA Validation Check

There is lot of hype about WGA (Windows Genuine Advantage) when Microsoft builds functionality in its few of the public beta products to conduct a genuine product check before the product gets installed. MS products or tools with WGA check enabled can only be installed on a valid / genuine