Due to many requests for the POC and since most Asterisk systems should
have been patched by now, please find in this message the POc for our
advisory posted on
http://seclists.org/fulldisclosure/2007/Mar/0315.html
http://seclists.org/fulldisclosure/2007/Mar/0315.html
usage
It's funny that this received more attention than any other topic I've seen
in awhile
On 3/23/07, Dude VanWinkle [EMAIL PROTECTED] wrote:
On 3/22/07, evilrabbi [EMAIL PROTECTED] wrote:
I called that number because I didn't think it was real snip
suuure, THATS why you called up, you deviant
On 3/23/07, Michael Silk [EMAIL PROTECTED] wrote:
On 3/23/07, Dave No, not that one Korn [EMAIL PROTECTED] wrote:
Tim wrote:
Hello,
On Wed, Mar 21, 2007 at 06:45:19PM +0300, 3APA3A wrote:
Dear Michael Silk,
First, by reading 'crack' I thought lady can recover full
Foresight Linux Essential Advisory: 2007-0002-1
Published: 2007-03-24
Rating: Major
Updated Versions:
inkscape=/[EMAIL PROTECTED]:1-devel//1/0.45.1-1
group-dist=/[EMAIL PROTECTED]:1-devel//1/1.1-0.8-4
References:
https://issues.foresightlinux.org/browse/FL-199
Tim Brown wrote:
Having noticed the popularity of fuzzing tools recently, I was feeling a
bit left out. Where is the Perl framework to complete the family? With
that in mind I've spent the last months working on something that should
fill the gap - Fuzzled.
Fuzzled is a powerful fuzzing
On 3/24/07, rob musial [EMAIL PROTECTED] wrote:
It's funny that this received more attention than any other topic I've seen
in awhile
people love the tampon stuff, pervs.
___
Full-Disclosure - We believe in it.
Charter:
Of course not, is enough to find a collision and you'll get for example a
message signed by somebody else that looks completely authentic since
signatures encrypt that hash with the private key.
On 3/21/07, Blue Boar [EMAIL PROTECTED] wrote:
3APA3A wrote:
First, by reading 'crack' I
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
Powered by Outblaze
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
I felt the need to extend the list of Antiphishing Departements of some
Social Networks, so the Myspace Antiphishing Departement (
http://www.myspace.com/antiphishing ) got another friend,
the hi5 Antiphishing Departement ( http://antiphishing.hi5.com ).
Full blog post is available here:
i didn't say your son got pwnd, kevin and yeah they both prob pissed
each other off. go figure.
On 3/24/07, Kevin Finisterre (lists) [EMAIL PROTECTED] wrote:
Its not my son... and as far as getting cocky, its a 2 way street for
sure in this situation.
-KF
On Mar 24, 2007, at 11:47 AM, Jason
Fizzle allows feeds to use HTML in feed data resulting in JavaScript being
run in the chrome: window with chrome permissions. The extension will
convert HTML entities back to their ASCII equivalents thus lt; becomes
and so forth. Various feeds fields are vulnerable including the title which
On Sat, 24 Mar 2007 11:48:10 CDT, wac said:
Of course not, is enough to find a collision and you'll get for example a
message signed by somebody else that looks completely authentic since
signatures encrypt that hash with the private key.
No, if you have a signature to some text, you need to
13 matches
Mail list logo
