Dan Kaminsky to me to him:
> >> I really like the hash length declaration bugs, where the client can
> >> tell the server how many bytes of a hash need to be validated. (Yep,
> >> you just say "one byte is plenty")
> >>
> >> SNMPv3 and XML-DSIG both fell to this, catastrophically.
> >
> > I thoug
On Sat, May 1, 2010 at 11:23 AM, Georgi Guninski wrote:
> ok, we had a flame.
>
> what is the newest category of sekurity bugz that is considered elite ?
chained vulns of local arb. exec followed by vm break-out. all the vm
implementers in their mad rush for feature rich are expanding attack
surf
On May 1, 2010, at 8:30 PM, Nick FitzGerald
wrote:
> Dan Kaminsky wrote:
>
>> I really like the hash length declaration bugs, where the client can
>> tell the server how many bytes of a hash need to be validated. (Yep,
>> you just say "one byte is plenty")
>>
>> SNMPv3 and XML-DSIG both fe
Lately, it seems that the old has become new :)
D
On Sat, May 1, 2010 at 6:30 PM, Nick FitzGerald
wrote:
> Dan Kaminsky wrote:
>
>> I really like the hash length declaration bugs, where the client can
>> tell the server how many bytes of a hash need to be validated. (Yep,
>> you just say "one b
But at least you got to see you contribution to the industry.
t
> -Original Message-
> From: full-disclosure-boun...@lists.grok.org.uk [mailto:full-disclosure-
> boun...@lists.grok.org.uk] On Behalf Of Georgi Guninski
> Sent: Saturday, May 01, 2010 11:23 AM
> To: full-disclosure@lists.gro
Dan Kaminsky wrote:
> I really like the hash length declaration bugs, where the client can
> tell the server how many bytes of a hash need to be validated. (Yep,
> you just say "one byte is plenty")
>
> SNMPv3 and XML-DSIG both fell to this, catastrophically.
I thought Georgi asked for the
Advisory: CORELAN-10-035
Disclosure date : May 1st, 2010
http://www.corelan.be:8800/advisories.php?id=CORELAN-10-035
00 : Vulnerability information
Product : NolaPro Enterprise
Version : 4.0.5538
Vendor : Noguska LLC
URL : http://www.nolapro.com
Platform : Windows (PHP/MySQL)
I really like the hash length declaration bugs, where the client can
tell the server how many bytes of a hash need to be validated. (Yep,
you just say "one byte is plenty")
SNMPv3 and XML-DSIG both fell to this, catastrophically.
On May 1, 2010, at 2:23 PM, Georgi Guninski
wrote:
> o
ok, we had a flame.
what is the newest category of sekurity bugz that is considered elite ?
basically, int. over., BO are generally considered elite yet barely new.
XSS probably is not elite by 3l33t majority opinion.
i was looking in the past and my heart was not beating fast ;-)
--
joro
___