Re: [Full-disclosure] FoxNews: Paralysis of the Fifth Power

Lesson #1: When creating a fake page, find someone with a reasonable knowledge of the english language AND HTML skills. Lesson#2 using plain JPEGs don´t make a very realistic fake page from whatever site you want to pretend defacing. Lesson#3 Fake news on Fox News ?? you really want to pass u

[Full-disclosure] [SECURITY] [DSA 1162-1] New libmusicbrainz packages fix arbitrary code execution

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 1162-1[EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 30th, 2006

[Full-disclosure] FoxNews: Paralysis of the Fifth Power

Last week Russian hackers attacked top news agencies web sites. Work in these agencies was almost completely paralyzed by mass defaces. Russian hackers replaced published news by anti-American slogan "Neft' bliznego vostoka - dostoyanee chelovechestva. Russkaya Komputernaya Mafia." (Oil of Midd

[Full-disclosure] Re: Re:multi billion dollar corporation

From: "Jeb Bush" <[EMAIL PROTECTED] >  don't play with me and my intelligence Mike M you know its a threat and if i'm telling you about it then you know it can be used to hackyahoo employees-JebBrr.. I pee my pants.. pls dont rd my status msg.. aarrggg.. no dont.. pls pls pls.. a.. YOU DID!! my

Re: [OT] Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

[EMAIL PROTECTED] skrev: --On August 29, 2006 6:56:02 PM -0400 [EMAIL PROTECTED] wrote: On Tue, 29 Aug 2006 17:20:35 CDT, Paul Schmehl said: Hezbollah tells a story.  BBC repeats it.  No effort is made to see if the story is actually true.  But it's not bias.  Sur

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

On 8/29/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: I can think of two explanations. Either the story isn't fake (very unlikely if you read the evidence) or the media isn't controlled by the jews after all. Drat, foiled again! Damn you Schmehl! :-) -JP

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

--On August 29, 2006 10:17:55 PM -0400 Dude VanWinkle <[EMAIL PROTECTED]> wrote: On 8/29/06, Paul Schmehl <[EMAIL PROTECTED]> wrote: Or this? "On the evening of 23 July, he and two other medics answered a call to rendezvous with an ambulanc

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

On 8/29/06, Paul Schmehl <[EMAIL PROTECTED]> wrote: Or this? "On the evening of 23 July, he and two other medics answered a call to rendezvous with an ambulance from Tibnin, in the hills to the east, to relay three civilian patients down to Ty

Re: [OT] Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

--On August 29, 2006 6:56:02 PM -0400 [EMAIL PROTECTED] wrote: On Tue, 29 Aug 2006 17:20:35 CDT, Paul Schmehl said: Hezbollah tells a story. BBC repeats it. No effort is made to see if the story is actually true. But it's not bias. Sure thing. That's called sloppy journalism, when you do

Re: [Full-disclosure] Pincone Research Clipboard Access

Tonu, i told you you should have at least published this first!! (and have a special number for that demonstration, i forgot to add ;-) ) cya - Original Message - From: "Tõnu Samuel" <[EMAIL PROTECTED]> To: "y0himba" <[EMAIL PROTECTED]> Cc: Sent: Tuesday, August 29, 2006 8:39 PM Su

[OT] Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

On Tue, 29 Aug 2006 17:20:35 CDT, Paul Schmehl said: > Hezbollah tells a story. BBC repeats it. No effort is made to see if the > story is actually true. But it's not bias. Sure thing. That's called sloppy journalism, when you don't bother checking. Bias is when you *do* make an effort to ch

[Full-disclosure] Re: Cisco NAC Appliance Agent Installation Bypass Vulnerability

Hello, This is an answer to Cisco's response to our advisory entitled "NAC agent installation bypass". We appreciate Cisco's answer to our advisory and the confirmation of the validity of our approach. We like to address some of the points Eloy Paris from Cisco makes in his answer. Eloy Paris w

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

--On Tuesday, August 29, 2006 17:34:24 -0400 [EMAIL PROTECTED] wrote: On Tue, 29 Aug 2006 14:55:09 CDT, Paul Schmehl said: > 1] Hezbollah has managed to become an important presence in the > Lebanese Parliament They just left out - by killing opposition leaders and threatening others. Like y

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

--On Tuesday, August 29, 2006 22:12:03 +0100 teh kids <[EMAIL PROTECTED]> wrote: that is bad reporting, not bias, please show how there is bias in that statement. Sure it's not bias. Just bad reporting. Yet someone that bad reporting always fails in the same direction. [snip] Right,

Re: [Full-disclosure][OT] Re: Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

Greetings, Could I request that you please take this off-topic discussion off-list, or please have the courtesy to mark the subject line with an "[OT]" so those of us who are not concerned with your ideologies can execute some simple filters to not have to troll (no pun intended) through it? Than

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

On Tue, 29 Aug 2006 14:55:09 CDT, Paul Schmehl said: > > 1] Hezbollah has managed to become an important presence in the > > Lebanese Parliament > > They just left out - by killing opposition leaders and threatening others. Like your government doesn't do that too? > > 2] It has gained support f

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

I think you might have become blinded by your own prejudice. it seems that unless the bbc states _your_ opinion then they are biased against you. > 1] Hezbollah has managed to become an important presence in the > Lebanese Parliament They just left out - by killing opposition leaders and threa

[Full-disclosure] Re: Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

On Tue, 29 Aug 2006 14:53:00 -0400 Dude VanWinkle wrote: > http://www.workingforchange.com/comic.cfm?itemid=21200 Really, really funny. Especially the one with gay marriage and flag burning. Denis ___ Full-Disclosure - We believe in it. Charter: http:

Re: [Full-disclosure] Pincone Research Clipboard Access

y0himba wrote: The have implemented a "security feature" that attempts to access my clipboard. I of course don't want to allow this, so I emailed the person "in charge" explaining the problem with accessing the survey. Her Heh, they are ignorants. Anyway, let them come to my http://www.jes

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

--On Tuesday, August 29, 2006 20:18:41 +0100 teh kids <[EMAIL PROTECTED]> wrote: > You mean like this? "It now has an important presence in the Lebanese parliament and has built broad support by providing social services and health care.

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

> try googling BBC and Hezbollah - it took me all of 30 seconds to find > _and_ read that link (because I can read). > You mean like this? "It now has an important presence in the Lebanese parliament and has built broad support by providi

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

this ones for you Paul ;-) http://www.workingforchange.com/comic.cfm?itemid=21200 On 8/29/06, Paul Schmehl <[EMAIL PROTECTED]> wrote: --On Tuesday, August 29, 2006 16:59:41 +0100 teh kids <[EMAIL PROTECTED]> wrote: > > try googling BBC and Hezbollah - it took me all of 30 seconds to find > _and

[Full-disclosure] Re: [Advisory] % +Thu Mar 16 21:07:15 EST 2006+ %Local Privilege Escalation Vulnerability in Microsoft Windows XP

Christoph Gruber wrote: > On Friday 17 March 2006 03:07 Christoph Gruber wrote: > > I want to straiten out, that this posting does NOT come from me! > > A look at the header clarifies that: you're almost six months too late? Seriously, there's not a lot of need to do this. It should be b

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

--On Tuesday, August 29, 2006 16:59:41 +0100 teh kids <[EMAIL PROTECTED]> wrote: try googling BBC and Hezbollah - it took me all of 30 seconds to find _and_ read that link (because I can read). You mean like this? "It now has an impor

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

And 25% of the population believes Hezbollah is a humanitarian organization - because that's what the "non-biased" media (CNN, CBS, NBC, ABC, BBC, etc., etc., ad nauseum, adfinitum) tells them. http://news.bbc.co.uk/2/hi/middle_east/1908671.stm No 25% of 'your' population believes that because

[Full-disclosure] CYBSEC - Security Advisory: Microsoft Windows DHCP Client Service Remote Buffer Overflow

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 (The following advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_Microsoft_Windows_DHCP_Client_Service_Remote_Buffer_Overflow.pdf) This advisory contains the full-detailed information reg

[Full-disclosure] [SECURITY] [DSA 1161-1] New Mozilla Firefox packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA 1161-1[EMAIL PROTECTED] http://www.debian.org/security/ Martin Schulze August 29th, 2006

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

--On Tuesday, August 29, 2006 08:16:48 -0400 [EMAIL PROTECTED] wrote: If it's less disinformation if you know they're lying, is it more disinformation when a large percentage of the population actually believes hear and soul that the organization is telling the truth? (Yes, people in the US will

[Full-disclosure] rPSA-2006-0159-1 ImageMagick

rPath Security Advisory: 2006-0159-1 Published: 2006-08-29 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Indirect User Deterministic Unauthorized Access Updated Versions: ImageMagick=/[EMAIL PROTECTED]:devel//1/6.2.3.3-3.2-1 References: http://www.cve.mitre.org/c

[Full-disclosure] [ MDKSA-2006:155 ] - Updated ImageMagick packages fix vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDKSA-2006:155 http://www.mandriva.com/security/ ___

[Full-disclosure] [ GLSA 200608-28 ] PHP: Arbitary code execution

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200608-28 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - -

[Full-disclosure] [ GLSA 200608-26 ] Wireshark: Multiple vulnerabilities

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200608-26 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - -

[Full-disclosure] [ GLSA 200608-27 ] Motor: Execution of arbitrary code

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200608-27 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - -

[Full-disclosure] joe job mitigation

the surface: a POP3 "catch-all" mailbox the problem: fallout from a (small) joe job attack - 6000 bounces in the mail queue, mixed with normal mail, from all over the internet aggrevating circumstances: a spam filter which takes 5-10 seconds to process each bounce potential consequences: day-l

[Full-disclosure] [ISR] - IBM eGatherer ActiveX Code Execution PoC

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 :: :: [ISR] :: Infobyte Security Research :: www.infobyte.com.ar :: 08.29.2006 :: .:: DOWNLOAD http://www.infobyte.com.ar/development.html .:: CREDIT Francisco Amato famato][at][infobyte][dot][com][dot][ar -BEGIN PGP SIGNATURE-

Re: [Full-disclosure] Re: Re: George Bush appoints a 9 year old to be the chairperson of the Information Security Deportment

On Mon, 28 Aug 2006 12:06:24 -1000, Peter Besenbruch said: > Actually, some of them are. Some may be as air headed, but Fox has as > its mission to promote a Republican, right wing agenda. Fox makes no > secret of it; it's what they do; it's why they exist. I think that's > what Valdis had in m

[Full-disclosure] XSS in HLStats 1.34

Cross-site Scripting Vulnerability in HLStats 1.34 hlstats.php?mode=search&game=cstrike&st=player&q=%22%3CSCRIPT%3Ealert%28%22XSS%22%29%3B%3C%2FSCRIPT%3E%22 Search module fails to sanitize quotes. kefka [EMAIL PROTECTED] Thanks to RSnake ___ Full-Di

[Full-disclosure] XSS at top news agencies

Hi! I`ve published XSS vulnerabilities at top news agencies (bbc, cbsnews, zdnet, cnn, cnet etc). Examples are in my blog http://www.securitylab.ru/blog/tecklord/224.php Have a nice day, Valery ___ Full-Disclosure - We believe in it. Charter: htt