On Nov 30, 2009, at 9:25 PM, David Berard wrote:
>> 7.0 not vuln.
>
> 7.0 vulnerable here,
>
> $ ./env
> /libexec/ld-elf.so.1: environment corrupt; missing value for
> /libexec/ld-elf.so.1: environment corrupt; missing value for
> /libexec/ld-elf.so.1: environment corrupt; missing value for
> 7.0 not vuln.
7.0 vulnerable here,
$ ./env
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/li
watch the video, but the Al of the Gore bit is at 1.40 in
http://www.youtube.com/watch?v=VebOTc-7shU
On Tue, Dec 1, 2009 at 3:40 PM, Paul Schmehl wrote:
> --On Monday, November 30, 2009 6:13 PM -0600 Rohit Patnaik
> wrote:
>
> > Right, but you said that the global warming folks are asking for
>
--On Monday, November 30, 2009 6:13 PM -0600 Rohit Patnaik
wrote:
> Right, but you said that the global warming folks are asking for
> unnecessary spending of *trillions*. Where would those trillions go?
Apparently you haven't read the proposals to deal with global warming. An
MIT study foun
What is WinAppDbg?
==
The WinAppDbg python module allows developers to quickly code instrumentation
scripts in Python under a Windows environment.
It uses ctypes to wrap many Win32 API calls related to debugging, and provides
an object-oriented abstraction layer to manipula
6.4-RELEASE not vuln
On (11/30/09 22:51), Benji wrote:
> 7.0 not vuln.
>
> On Mon, Nov 30, 2009 at 10:49 PM, Ed Carp wrote:
>
> > On 11/30/09, Kingcope wrote:
> >
> > > Systems tested/affected
> > > **
> > > FreeBSD 8.0-RELEASE *** VULNERABLE
> > > FreeBSD 7.1-R
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Nov 30, 2009, at 6:31 PM, phantomcircuit wrote:
> Confirmed on 7.2-RELEASE-p4 fully patched according to freebsd-update.
>
> %sh exploit.sh
> Desktop env env.c exploit exploit.c exploit.sh payload.c payload.o
> private program.c program.o public p
7.0 not vuln.
On Mon, Nov 30, 2009 at 10:49 PM, Ed Carp wrote:
> On 11/30/09, Kingcope wrote:
>
> > Systems tested/affected
> > **
> > FreeBSD 8.0-RELEASE *** VULNERABLE
> > FreeBSD 7.1-RELEASE *** VULNERABLE
> > FreeBSD 6.3-RELEASE *** NOT VULN
> > FreeBSD 4.9-R
just ask Al of the Gore about his carbon trading exchange he setup
with Ken Lay of Enron fame as advisor...
http://www.youtube.com/watch?v=UjHAB62xKXI
On Tue, Dec 1, 2009 at 11:13 AM, Rohit Patnaik wrote:
> Right, but you said that the global warming folks are asking for unnecessary
> spending o
I'm going to assume this is a serious question.
You could start with the people enriching themselves off of carbon credits. Al
Gore, for one obvious example. You could continue with the people that think
the entire world should be ruled by a bureaucracy called the UN. You could go
on with th
Right, but you said that the global warming folks are asking for unnecessary
spending of *trillions*. Where would those trillions go? I don't see Al
Gore becoming richer than Bill Gates off carbon credits. Neither do I see
the UN gaining any more power via the IPCC. If anything, the existing
cl
No, Valdis. There *is* no saving us. We are hostage to our environment, and
nothing we do or don't do will change that. We can make less or more of an
impact on our environment by being good stewards, but in the final analysis one
large metorite or one Kracow can change the earth's environmen
Confirmed on 7.2-RELEASE-p4 fully patched according to freebsd-update.
%sh exploit.sh
Desktop env env.c exploit exploit.c exploit.sh payload.c payload.o
private program.c program.o public public_html run.sh w00t.so.1.0
FreeBSD local r00t zeroday
by Kingcope
November 2009
env.c: In function 'main
Stephen Mullins wrote:
<<...>>
> Britain is a lost nation from the human rights perspective. Luckily,
> their problems are not our problems, yet.
First, I'm neither British nor based in the UK, despite my Email
address and this is not a defense of the UK position, which sucks.
You say "our" --
On 11/30/09, Kingcope wrote:
> Systems tested/affected
> **
> FreeBSD 8.0-RELEASE *** VULNERABLE
> FreeBSD 7.1-RELEASE *** VULNERABLE
> FreeBSD 6.3-RELEASE *** NOT VULN
> FreeBSD 4.9-RELEASE *** NOT VULN
Glad I still run 6.3! How about 6.4?
_
** FreeBSD local r00t 0day
Discovered & Exploited by Nikolaos Rangos also known as Kingcope.
Nov 2009 "BiG TiME"
"Go fetch your FreeBSD r00tkitz" // http://www.youtube.com/watch?v=dDnhthI27Fg
There is an unbelievable simple local r00t bug in recent FreeBSD versions.
I audited FreeBSD for local r0
>>> Recent evidence shows that the globe is again cooling
>> So the CO2 emissions are the only things saving us, right Paul?
Post-hoc, ergo propter hoc.
It's a staple of climate science.
Larry Seltzer
Contributing Editor, PC Magazine
larry_selt...@ziffdavis.com
http://blogs.pcmag.com/securityw
On Mon, 30 Nov 2009 16:44:28 EST, Michael Holstein said:
>
> > What UoW-LaCrosse students should do is flood FB with pictures of
> > staged underage drinking shots and put a stop to this.
> >
>
> Or just start photoshopping hookers into the front seat of local cop cars.
Or get Google Streetview
There's a question I ask whenever I hear a theory like this. Cui bono? Who
benefits? Who is benefiting from the "climate change scaremongering"? You
claim that trillions of dollars will need to be spent. If its such a scam,
then who is scamming us? The UN IPCC? A mysterious cabal of alternat
Asterisk Project Security Advisory - AST-2009-010
++
| Product| Asterisk|
|--+-|
Hello participants of Full-Disclosure.
In my article Fingerprinting of Apache web server
(http://websecurity.com.ua/3725/) (it's English version of it) I wrote about
my method of identification of Apache which I developed in 2006.
This method based on feature of Apache and allows to fingerprint A
> What UoW-LaCrosse students should do is flood FB with pictures of
> staged underage drinking shots and put a stop to this.
>
Or just start photoshopping hookers into the front seat of local cop cars.
___
Full-Disclosure - We believe in it.
Charter:
On Mon, 30 Nov 2009 15:06:46 CST, Paul Schmehl said:
> Recent evidence shows that the globe is again cooling
So the CO2 emissions are the only things saving us, right Paul?
http://en.wikipedia.org/wiki/Fallen_Angels_%28science_fiction_novel%29
pgpzLb7HaUtWo.pgp
Description: PGP signature
___
UK based? Not sure if someone has strayed from the OP, but this is originally
a Wisconsin-based issue, where underage drinking is also legal if accompanied
by a legal guardian or if one's spouse is of legal drinking age. That's not
the issue... I've already made my opinions on the matter pub
No ever stated that the climate wasn't changing. It always is. And there's
nothing man can do to change that. One major volcanic eruption does more
damage to the climate than billions of people driving cars worldwide and in
much less time.
That would should be good stewards of the earth goes
Yea Echelon
Also considering this is a UK based problem i cant really see the point as
in the UK its
legal to drink at any age as long as you are under parents supervision.
-rogue
On Mon, Nov 30, 2009 at 2:14 PM, wrote:
> A picture of a beer can in someone's hand does not prove it contained
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Simply because a few scientist have found to be fraudulent it doesn't
mean the concept of Climate change is. Even if this was found to be
faked it is far from the only evidence.
Ali
> "Scientists" are caught red-handed manipulating data to serve thei
This is just doing too far.
He's obviously a paranoid schizophrenic who uses aliases to bring attention to
himself. This means he's a loose cannon. A potential lone wolf terrorist. Who
knows, he may decide to do something nasty to bring attention to his causes.
It's obvious as Andrew Wallace's
Problem Description
===
A remote command execution vulnerability exists in the dotDefender
(3.8-5) Site Management.
dotDefender [1] is a web appliaction firewall (WAF) which 'prevents
hackers from attacking your
website.'
Technical Details
=
The Site Management
I don't know whether it is tragic, or tragi-comic, that N3tty has clearly
been sat around foaming at the mouth at the stark realization that he is
banned from this mailing list since January 2009, and conducting
ever-more-elaborate fantasies in his mind as to what is going on in the
world. Seriousl
What exactly do you expect the Brits to "vote from the rooftops" with?
They can't even legally own pointy pieces of metal. Do you expect
them to throw chip buttys and pints of ale down at the police state
thugs holding automated rifles?
This is a defacto ban on civilian use of encryption technol
On Mon, 30 Nov 2009 05:45:53 EST, full-disclos...@safe-mail.net said:
> Valdis isn't a random person either, hes proved hes pro-cyber war with a
> vested interest against me saying any of this stuff.
Actually, if you paid any attention, you'd have noticed that in general
I take positions that woul
BLUE MOON SECURITY ADVISORY 2009-07
===
:Title: Backdoor in PyForum
:Severity: Critical
:Reporter: Blue Moon Consulting
:Products: PyForum v1.0.3
:Fixed in: --
Description
---
pyForum is a 100% python-based message board system based in the excellent
we
Dear List,
I updated the whitepaper with a lot of new information, some
leveraging the vulnerability in other ways that certainly increase
the effectiveness and impact of this vulnerability.
A brief warning to those that think they are safe because they
don't accept client-si
A picture of a beer can in someone's hand does not prove it contained anything,
much less
beer. I have sometimes left glasses of things like apple juice with a bit of
ice cream
foam on top in church (when the organist needed a drink) or spoken of such. I
also recall
a lot of guys when I was in c
great.
and i just got off that watch list
On Fri, Nov 27, 2009 at 12:30 PM, wrote:
> What do you folks think about "funsec" developing into a terror cell of
> security professionals?
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lis
Hello participants of Full-Disclosure.
Cross-Site Scripting are very widespread vulnerabilities. The most common
place for XSS is a search engines (local on-site search and global engines),
as I know from my experience and from my statistic of found holes at web
sites and web applications (both pu
Hi!
I've just released the working exploit for CTXSYS.DRVXTABC.CREATE_TABLES
injection on Oracle DB 9i/10g (CVE-2009-1991)
You can find the code on my site, http://rawlab.mindcreations.com
In particular,
Classic SQL injection:
http://rawlab.mindcreations.com/codes/exploit/oracle/ctxsys-drvxtabc-
2009/11/30
>
>
> Because I said all this stuff previously I was attacked on this list, got
> banned by John Cartwright...
I don't think that you got it right. In my point of view you were banned,
because you were trolling the bad way. It had nothing to do with you making
a point.
so they setup
Hey!
I know it's been a while, but I've been busy etc. etc. :)
After 3 years, I've finally got around to a full release number! Here is
version 1.0a, in which I've started integrating Nick von Dadelszen's
libnfc (http://www.libnfc.org/) wrapper so we can support the new
generation of usb stick
It is my understanding the "security industry" would like nothing better than a
cyber war to kick off, mass profit, mass employment, mass political capital to
hit "cyber security" into the main stream of society to strike at the heart of
the single mom and retired couple crowd.
Cyber War is a t
41 matches
Mail list logo