Re: [Full-disclosure] SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability

2007-08-17 Thread Pranay Kanwar
I fully agree with your explanation and reason on the JWIG issue. regards warl0ck // MSG Steven M. Christey wrote: On Fri, 17 Aug 2007, Pranay Kanwar wrote: Frankly i now feel, that its not SecNiche's fault entirely, it has got a lot of encouragement from its past invalid and absurd claims

Re: [Full-disclosure] SecNiche : Microsoft Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability

2007-08-16 Thread Pranay Kanwar
Frankly i now feel, that its not SecNiche's fault entirely, it has got a lot of encouragement from its past invalid and absurd claims. Such as _JWIG Context Dependent Template Calling Denial of Service Vulnerability._ http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3816

Re: [Full-disclosure] [Whitepaper SecNiche] Insecurities in Implementing Serialization in BISON

2007-08-02 Thread Pranay Kanwar
Thanks for the bullshit once again. ...Remember students there are no stupid questions, only stupid people... -- Mr. Garrison to Stan in a Southpark episode. warl0ck // MSG ___ Full-Disclosure - We

Re: [Full-disclosure] [CVE 2007-3816] [Advisory] Vulnerability Facts Related JWIG Advisory

2007-07-22 Thread Pranay Kanwar
much sense. I hope that anyone reading a report like Hack Annotations in JWIG quickly will see that it is all bogus. However, I would naturally prefer that SecNiche would withdraw these absurd claims whereever they have been published. Regards, Anders Pranay Kanwar wrote: Hello, I would like

Re: [Full-disclosure] [WEB SECURITY] [CVE-2007-3816][Advisory] JWIG Context-Dependent Template Calling Dos

2007-07-21 Thread Pranay Kanwar
Hi, Too bad you have fell for this without verifying things first i'll just break two of the claims given by secniche. First of all lets all get this straight, JWIG is for web services creation. For the attacks to succeed the attacker will have to manipulate the things at the server end.

Re: [Full-disclosure] SECNICHE : Dwelling Security is On the Run

2007-06-16 Thread Pranay Kanwar
Hi, Aditya Sood is no longer part of metaeye, he was thrown out because of this kind of behaviour, as MZ describes it. warl0ck // MSG http://www.metaeye.org Michal Zalewski wrote: On Tue, 12 Jun 2007 [EMAIL PROTECTED] wrote: In an admittedly brief review of this page, I saw nothing useful

Re: [Full-disclosure] SECNICHE : Dwelling Security is On the Run

2007-06-16 Thread Pranay Kanwar
dont stretch it. do your work. threat ?? whoha! what then, are you going to do double trap us ? or exploit us in the global space ?. Stop vandalizing the lists and shitting on the security community. warl0ck // MSG http://www.metaeye.org Aditya K Sood wrote: Pranay Kanwar wrote: Hi, Aditya

Re: [Full-disclosure] screen 4.0.3 local Authentication Bypass

2007-06-04 Thread Pranay Kanwar
Hi, Verified on OpenBSD $ uname -a OpenBSD drake 4.1 GENERIC#172 i386 $ pkg_info screen Information for inst:screen-4.0.3p0 Comment: multi-screen window manager --output snipped-- $screen Then pressing space-bar to continue Locking the screen with C-a C-x. Pressing Ctrl+C Key: