subject:"\[Full\-disclosure\] Warning\: Hackers hijacking unused IP Addresses inside Trusted domains \[POC\]"

Re: [Full-disclosure] Warning: Hackers hijacking unused IP Addresses inside Trusted domains [POC]

2007-11-21 Thread Gadi Evron

On Wed, 21 Nov 2007, Paul Schmehl wrote: > If Yahoo was able to fix the problem quickly, then it would appear that Yahoo > had a compromised domain server or servers. We all get pwned at one point or another, how we respond is what matters. > > -- > Paul Schmehl ([EMAIL PROTECTED]) > Senior In

Re: [Full-disclosure] Warning: Hackers hijacking unused IP Addresses inside Trusted domains [POC]

2007-11-21 Thread Paul Schmehl

--On Wednesday, November 21, 2007 21:45:35 +1100 XSS Worm XSS Security Information Portal <[EMAIL PROTECTED]> wrote: > > In the case of Yahoo, security firm Finjan said hackers exploited an > unused IP address within Yahoo's hierarchy and used that as the domain > address behind a forged Google An

[Full-disclosure] Warning: Hackers hijacking unused IP Addresses inside Trusted domains [POC]

2007-11-21 Thread XSS Worm XSS Security Information Portal

*Domain Name System Hijacked: Hackers Abuse Domain-Name Trust* *InternetWorld's ** Andy Patrizio **and Finjan's Yuval Ben-Itzahk discuss the fundamental weaknesses in Finjan's Bl