was researching these.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
using it's powerful functionality?
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Original Message -
From: Thierry Zoller [EMAIL PROTECTED]
Again Geo, NOBODY has said that this is a vulnerability OF IE7 ITSELF we
said
the handler that IE7 installs is broken.
I'm not disagreeing with that statement. I'm saying this input should never
get that far.
Geo
to prevent useage of
streams on NTFS, you don't blame the filesystem that the input gets passed
to, it's the job of the ftp server to do the sanitizing of untrusted input.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk
those exposed interfaces.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
the mailto link
in an untrusted html page and make it work with IE7.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
to rediscover this one. Which
makes this even worse.
I just saw his video showing the exploit fireing up calculator, it looks
like the same stuff (feature/exploit call it what you want) that's been
around for years. See www.nthelp.com/test.pdf (warning, it won't damage
anything but it may scare you)
Geo
.
Unless the businesses of the world stop allowing email attachments and
enforce strict browsing policies, it's not going to change. You can't patch
user exploits.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full
Found this page, click on Accessories then try to print the page, it seems
to crash all the browsers I have soon as I try to print. Thought someone
here might like to play with the crash.
http://www.movincool.com/portable-air-conditioner/officepro60.php#
The crash happens in mshtml so it could easily be version dependent. IE6
W2K here.
Geo.
Printed from IE7 and FF 2.0.0.4 no problems.
Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blogs.eweek.com/cheap_hack/
Contributing Editor, PC Magazine
[EMAIL
So far this morning we seen 4 customers infected with what appears to be an
MS DNS RPC based worm.
Anyone seen any news on this yet?
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted
in.
If it takes more than simply roping the computer to a fraction of the
internet then it could be any combination of things, I mean I played with it
for over a week before it went into reduced functionality mode.
Geo.
___
Full-Disclosure - We believe
would have a pretty major problem as the bulk
of the worlds computers started shutting down, talk about a security issue?
So anyone here with a bit more technical expertise want to pick up this ball
and run with it?
Geo.
___
Full-Disclosure - We
me.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
to cure the problems, poked
around at other things, nothing helped. Then upon removing the routing and
letting it talk to the whole net it was only minutes before everything was
working again.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http
. Further testing is needed. I
won't be testing it for a couple days as I need the laptop connected to
other networks to try some other software I need to test. (that tcp limit
may prove a problem for network monitoring)
Geo.
___
Full-Disclosure - We believe
already. Looks
like it's spreading pretty quick
http://isc.incidents.org/port_details.php?port=139repax=1tarax=2srcax=2p
ercent=Ndays=40
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted
with netbios enabled and you should have a
copy within an hour or so.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
some action. They do this all the time and anyone running
anti-cache-poisoning measures then fails to resolve their dns.
Geo. (if there is anyone from chase on the list, please go smack the dns
admin who is doing this)
___
Full-Disclosure - We believe
then if the
same ratio were to respond with bad information it would make a lot of work
for the folks profitting from these activities.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted
use it to any extent at all. So them knowing it's active does
nothing. OTOH, they might not want to email someone who is likely to corrupt
the data they collect.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full
hey, a valid mail address, let's forward it to my buddy Joe Spammer and
his \/|agra pills
It almost as bad as clicking the remove bait some spammers post within
their messages.
If you're replying to a spam you just received, assume we are beyond caring
about this.
Geo
won't have to deal with for each spamming.
I mean to me it would seem getting 100 addresses off the spammers list is a
good thing. In fact I'd like to be able to send the same error message for
the addresses that are valid and have them removed from the spam list as
well.
Geo
until they need to scan and
clean their machine so removal is an important feature.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
to this issue.
APPENDIX A. - Vendor Information
http://www.isc.org/index.pl?/sw/bind/
APPENDIX B. - References
NONE
CONTACT:
*Geo.
[EMAIL PROTECTED]
*1-888-LOL-WHAT
*CISSP GSAE CCE CEH CSFA GREM SSP-CNSA SSP-MPA GIPS GHTQ GWAS
___
Full-Disclosure - We believe
received 200K
of traffic. That's the amplification, one small udp packet, one large text
record in return.
Note, I don't have to use your local servers, but this way it makes it more fun
to troubleshoot because it looks like you are the cause of your own flooding..
Geo
to fix it. For virus writers, it's the perfect way
to trash windows machines without slowing virus propogation.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia
is that a lot of us feel it's better if a few criminals go
free than if a few innocent people get locked up. You can't apply standard
security practices to a population, or you would have to lock up everyone
and then release those who are not guilty.
Geo
I have an idea, how about every time there is a little noise on the list, we
generate 100X that amount of noise talking about ways to deal with the noise
and in the process drive the noise makers away because of too much noise?
Geo. or we could all just stfu
seems to still be picking up speed.
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Julian Haight over at spamcop and talk to him
explaining what you have there and see if you can work with him to automate
the way these get filed. I've found he's very smart when it comes to spam
and either he'll give you a way to do it or explain to you why it's a bad
idea.
Geo
Haven't any of the security firms checked out adobe pdf reader to see if
it's safe? It took 5 minutes to create this nonsense
http://www.nthelp.com/test.pdf and that's just using the standard features.
I hate to think what a real hacker could do with a pdf.
Geo
I don't understand the big fuss over google talk. ICQ has had both talk and
video chat features since 2000. It started as plugins but it's been part of
icq for a while now http://www.icq.com/img/download/tutorial/tutorial.html
Geo.
-Original Message-
Article on the BBC
http
I swore an oath never again to apply my skills in a way that helps
Microsoft.
So that means.. no forensics that show it actually was the user downloading
porn instead of the OS being exploited?
Geo.
___
Full-Disclosure - We believe in it.
Charter
/research/upcoming/index.html but I guess not... 141
days and counting, and it will get released when MS hears that someone has
written and released an exploit for it, then of course all of us have 6 days
to live..
Geo.
___
Full-Disclosure - We believe
the 1908 congress that extended copyright law to cover
music as well, pretty interesting stuff.
http://www.theyscrewedusagain.com/copyrightact1909.htm
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
)
Geo.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
37 matches
Mail list logo