Can anyone give me the low down on the
(questionable) FireFox _javascript_ vulnerabilities ?
Many thanks in advance,
Aaron
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsore
On Tue, 10 Oct 2006, Aaron Gray wrote:
> Can anyone give me the low down on the (questionable) FireFox JavaScript
> vulnerabilities ?
they're very real, and in the interests of anti-disclosure, i'm not going
to say more than that. if you would've been there, you would've known.
STOP DISCLOSIN
On Tue, 10 Oct 2006, Pink Hat wrote:
> FUD.
..isn't that the sound of boxes being compromised everywhere?
i thought so.
- 'cube [DTM/uH/wouldntyouliketoknow?]
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosur
FUD.
On 10/10/06, darkcube <[EMAIL PROTECTED]> wrote:
>
> On Tue, 10 Oct 2006, Aaron Gray wrote:
>
> > Can anyone give me the low down on the (questionable) FireFox JavaScript
> > vulnerabilities ?
>
> they're very real, and in the interests of anti-disclosure, i'm not going
> to say more than tha
On Tue, 10 Oct 2006, Pink Hat wrote:
> Prove it or its FUD. You and your crackhead friend already fucked it
> up at Toorcon so now you are trying here.
i think you have me confused with someone else -- most likely my two
crackhead friends that i got fucked up with *at* toorcon. i wasn't on
st
Prove it or its FUD. You and your crackhead friend already fucked it
up at Toorcon so now you are trying here.
On 10/10/06, darkcube <[EMAIL PROTECTED]> wrote:
>
> On Tue, 10 Oct 2006, Pink Hat wrote:
>
> > FUD.
>
> ..isn't that the sound of boxes being compromised everywhere?
>
> i thought so.
On Tue, 10 Oct 2006, Pink Hat wrote:
> Who let you off of IRC? Shouldn't you be chasing AEmpire around
> offering to suck his dick for meth?
seeing that pink's a whitened shade of red, wouldn't a pinkhat be a
whitehat using redhat?
- 'cube [DTM/uH/wouldntyouliketoknow?]
___
On Tue, 10 Oct 2006, Brad Causey wrote:
> At this point the accusations made at toorcon have no validity to them. They
says you.
i'm staring at an IDA window that says otherwise.
> Firefox. However, I think this a good shock to the community. Just because
> something is open source and holds t
On Tue, 10 Oct 2006, Brad Causey wrote:
> Good for you, follow the proper disclosure procedures. You can't expect for
> me (or anyone else) to just take your word for it. When I say validity, I
> mean that these vulnerabilities haven't been verified by a reliable
> authority.
fuck the proper dis
On 10/10/06, darkcube <[EMAIL PROTECTED]> wrote:
On Tue, 10 Oct 2006, Brad Causey wrote:> At this point the accusations made at toorcon have no validity to them. Theysays you.i'm staring at an IDA window that says otherwise.
Good for you, follow the proper disclosure procedures. You can't expect fo
All,At this point the accusations made at toorcon have no validity to them. They were made as "joke" by two individuals that seemed to have a need for publicity. This is not to say that Firefox is better or worse than IE. I'm sure that both have their fair share of vulnerabilities. But factually, n
Hi
This is not portal to show obscene stuff.Dont take
it wrong but this is not the right way.
Pink Hat wrote:
> Prove it or its FUD. You and your crackhead friend already fucked it
> up at Toorcon so now you are trying here.
>
>
>
> On 10/10/06, darkcube <[EMAIL PROTE
FUD= Fear, Uncertainty and Doubt.
A marketing trick to scare people into buying your
product/idea/service. Typically vague statements not based on any
known form of reality.
On 10/10/06, darkcube <[EMAIL PROTECTED]> wrote:
>
> On Tue, 10 Oct 2006, Pink Hat wrote:
>
> > Prove it or its FUD. You
On 10/10/06, Philosophil <[EMAIL PROTECTED]> wrote:
> FUD= Fear, Uncertainty and Doubt.
>
> A marketing trick to scare people into buying your
> product/idea/service. Typically vague statements not based on any
> known form of reality.
Obviously its not just a marketing trick to sell products but
On Tue, 10 Oct 2006, Pink Hat wrote:
> Obviously its not just a marketing trick to sell products but also a
> trick to sell false skill.
it doesn't take much skill to be a security professional nowadays, or to
find most vulnerabilities, or to disclose them, or even to patch them.
the skill lie
On 10/10/06, darkcube <[EMAIL PROTECTED]> wrote:
> it doesn't take much skill to be a security professional nowadays, or to
> find most vulnerabilities, or to disclose them, or even to patch them.
You are only partially right there. But I'll give it to you.
> the skill lies in avoiding detectio
On Tue, 10 Oct 2006, Pink Hat wrote:
> Agreed, but use your so called zero day against the wrong target and
> you will get caught. Unfortunately, the majority of so called
> professionals, wouldn't detect a 10 inch black cock in their ass let
> alone detect an unknown attack.
real blackhats rar
On 10/10/06, darkcube <[EMAIL PROTECTED]> wrote:
> real blackhats rarely get caught,
and smart ones get jobs as whitehats and make some dollars playing both sides.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosur
FUD = Fear Uncertainty Doubt.
In other words you are no better than the FUD spreading security
vendors that care more about their stockholders than they do actual
security.
Who let you off of IRC? Shouldn't you be chasing AEmpire around
offering to suck his dick for meth?
On 10/10/06, darkcube
19 matches
Mail list logo
