Re: [Full-disclosure] I am furious.

2010-03-05 Thread Milan Berger
On Thu, 4 Mar 2010 18:57:14 -0800 Mercury Vapour wrote: > You are a fucking idiot. It will never end, will it ? /signed -- Kind Regards Milan Berger Project-Mindstorm Technical Engineer -- project-mindstorm.net 90459 Nuremberg Germany http://www.project-mindstorm.net twitter: http://tw

[Full-disclosure] SQL injection and XSS vulnerability in NATYCHMIAST CMS

2010-03-05 Thread Maciej Gojny
{ Ariko-Security - Advisory #2/3/2010 } = SQL injection and XSS vulnerability in NATYCHMIAST CMS Vendor's Description of Software: # http://www.natychmiast-cms.pl/Natychmiast+CMS.html [Polish] Dork: # N/A Application Info: # Name: NATYCHMIAST CMS Vulnerability

[Full-disclosure] Nixu challenge pw

2010-03-05 Thread h4ckm4s7er3000
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 http://challenge.nixu.com aeIrfYh -BEGIN PGP SIGNATURE- Charset: UTF8 Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 3.0 wpwEAQMCAAYFAkuP18YACgkQIc1h7QwMFybS5QP/VPqAT78YRBekQKZwlRePmPmrb1fh AlQLodvpIVWqH

[Full-disclosure] Opera 10.50 Asynchronous XMLHttpRequest Basic Auth Crash

2010-03-05 Thread spam account
First found it in one of the version 9 opera's and reported it, still works in 10.50. Crash Opera function doit() { a = new XMLHttpRequest() a.open("GET", "?crash", true, "crash", "crash"); a.send(null);

[Full-disclosure] FreeBSD and OpenBSD ftpd bug (not exploitable?)

2010-03-05 Thread Kingcope
FreeBSD ftpd globbing bug - null pointer dereference ? Affected FreeBSD Releases +-+-+-+-+-+-+-+-+-+ FreeBSD 8.0, 6.3 and 4.9 Affected OpenBSD Releases +-+-+-+-+-+-+-+-+-+ OpenBSD 4.6 Testing Environment +-+-+-+-+-+-+-+-+-+ FreeBSD localhost.Belkin 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Sat Nov 21

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread Jan G.B.
2010/3/4 james o' hare > > You had the chance > [...] > > Andrew > > Andrew, "we" (as in 'we', the community) know we had the chance to keep you here. But (if at all), there were just a few people who were against banning you. There are reasons for that. Please accept it and keep your worthles

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread David Alanis
Quoting "Jan G.B." : > 2010/3/4 james o' hare >> >> You had the chance >> > [...] > >> >> Andrew >> >> > Andrew, "we" (as in 'we', the community) know we had the chance to keep you > here. > > But (if at all), there were just a few people who were against banning you. > > There are reasons for th

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread James W. Lytle
Perhaps as a PROFESSIONAL, you could learn to temper your responses a little more appropriately rather than allowing flames to get the better of you? This discussion, I agree, should really be continued off-list, off-line or both. James W. Lytle Network Analyst Medical Information Systems 1102 W

[Full-disclosure] [ MDVSA-2010:055 ] poppler

2010-03-05 Thread security
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:055 http://www.mandriva.com/security/

[Full-disclosure] ncpfs, Multiple Vulnerabilities

2010-03-05 Thread Dan Rosenberg
ncpfs, Multiple Vulnerabilities March 5, 2010 CVE-2010-0788, CVE-2010-0790, CVE-2010-0791 ==Description== The ncpmount, ncpumount, and ncplogin utilities, installed as part of the ncpfs package, contain s

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread james o' hare
On Fri, Mar 5, 2010 at 3:28 PM, Jan G.B. wrote: > Andrew, "we" (as in 'we', the community) know we had the chance to keep you > here. I don't want back on the list, I don't want to be here. I want to get on with my life and raise a family. Tell the person impersonating me for over a year to get

[Full-disclosure] www.SpywareAnalytics.com Released!

2010-03-05 Thread evil fingers
Hello, We are happy to share the release of http://www.SpywareAnalytics.com, a [home] user specific portal for malware removal. Check it out and give us your feedback. Do register yourself into the forum and try to make the fullest use of it, to help yourself and

[Full-disclosure] Call for Papers: EC2ND 2010

2010-03-05 Thread Konrad Rieck
Dear Colleagues, Please find attached the Call for Papers for EC2ND 2010, the sixth European Conference on Computer Network Defense, which will be held in Berlin, Germany, October 28-29, 2010. Please feel free to distribute this announcement. We apologize if you receive multiple copies of this

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread james o' hare
On Fri, Mar 5, 2010 at 4:10 PM, James W. Lytle wrote: > Perhaps as a PROFESSIONAL, you could learn to temper your responses a little > more appropriately rather than allowing flames to get the better of you? > Incase people haven't realised why I lost my temper with him, Son of Ram is the one b

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread Son of Ram
Hi Andrew. I'm sorry for your troubles. I'd be happy to go over these issues with you. You have two main problems. One blaming others for all your faults "because of you", never taking responsibility for your own actions. Second, for believing you had any worth to this community in the first pl

[Full-disclosure] [ MDVSA-2010:056 ] openoffice.org

2010-03-05 Thread security
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:056 http://www.mandriva.com/security/

[Full-disclosure] Apache mod_isapi Dangling Pointer Vulnerability - Security Advisory - SOS-10-002

2010-03-05 Thread Lists
Apache mod_isapi Dangling Pointer Vulnerability - Security Advisory - SOS-10-002 Release Date. 5-Mar-2010 Last Update. - Vendor Notification Date. 9-Feb-2010 Product. Apache HTTP Server Platform. Microsoft Windows

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread james o' hare
On Fri, Mar 5, 2010 at 9:37 PM, Son of Ram wrote: > You have two main problems. You impersonating me and a Yahoo employee. They are the two main problems. Andrew ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread Son of Ram
Ah, So you have an issue with impersonation and copypasta, despite all signs appearing you are the sole source of it on this list. I haven't seen any evidence that you were ever impersonated. Every person sounded exactly like you. Wait a second. What's that? And he corrected it! That son

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread Son of Ram
Hello. I sincerely apologize. You cross-posting on wikipedia with an alias. http://preview.tinyurl.com/andrew-wallace-spams-wikipedia and http://preview.tinyurl.com/andrew-wallace-crossposts-orig This nobel editor corrected your Wikipedia self-promotion: http://preview.tinyurl.com/andrew-wallace

Re: [Full-disclosure] Draw a line under this non-sense, seriously

2010-03-05 Thread james o' hare
On Sat, Mar 6, 2010 at 12:17 AM, Son of Ram wrote: > I sincerely apologize. I'm glad you're apologizing for trolling the list and now Wikipedia, and for impersonating me and a Yahoo employee. Andrew ___ Full-Disclosure - We believe in it. Charter: htt