On Tue, Nov 30, 2004 at 08:26:41PM -0800, xtrecate wrote:
The article states that the FBI served subpoenas for specific information
from insecure.org, likely after finding evidence that some specific attacker
(who, no doubt, did something which deserves to be investigated) retrieved
data from
On 1 Dec 2004 at 14:16, Reed Arvin wrote:
Summary:
Multiple buffer overflows exist in Mercury/32, v4.01a, Dec 8 2003
(http://www.pmail.com/).
Details:
Multiple buffer overflows exist in Mercury/32, v4.01a, Dec 8 2003.
There are 14 vulnerable commands that can be used to cause buffer
I can confirm on WinXP SP1 ( download the [patch].exe run and reboot)
Mr Wever's exploit PoC did not run ( no shell, dialog warning )
cheers,
m.w
The IFRAME vulnerability has been patched, see
http://www.microsoft.com/technet/security/bulletin/ms04-040.mspx
The wording in ms04-040 is so
Has anyone confirmed that the XP Sp1 and/or NT4 windows update patch(es) work
with regards to skylined's exploit code; or do we have to deploy the .exe file?
Only asking cos I can't test this until I get home to my lab tonight.
Cheers,
Des
-Original Message-
From: morning_wood [EMAIL
In the wise words of Des Ward, on Thursday 02 December 2004 11:27:
Has anyone confirmed that the XP Sp1 and/or NT4 windows update patch(es)
work with regards to skylined's exploit code; or do we have to deploy the
.exe file?
The quick test I've made with WindowsUpdate on a XPSP1a was
MLNS?
On Thu, 2 Dec 2004 08:57:24 -, Adam Challis [EMAIL PROTECTED] wrote:
The Computer Fraud and Abuse Act
(http://www.usdoj.gov/criminal/cybercrime/1030_new.html).
Being based in Germany, wouldn't they be subject to German and EU law?
Does anybody know which German and EU
On Thu, Dec 02, 2004 at 08:57:24AM -, Adam Challis wrote:
The Computer Fraud and Abuse Act
(http://www.usdoj.gov/criminal/cybercrime/1030_new.html).
Being based in Germany, wouldn't they be subject to German and EU law?
Does anybody know which German and EU laws are relevant to MLNS?
Does anyone know why Microsoft does not have this patch available for XP (no
SP) running IE6 ?
I know this system is vulnerable to the IFRAME exploit as I tested it.
Bill
- Original Message -
From: Berend-Jan Wever [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent:
As stated in the FAQ of the patch page. It would appear the new baseline
for all future patches will be SP1 unless they decided to change it.
I am still using Windows XP, but extended security update support ended
on September 30th, 2004. What should I do?
Microsoft no longer supports Windows XP RTM. It only supports XP SP1
and XP SP2.
Cheers,
Phil
Phil Randal
Network Engineer
Herefordshire Council
Hereford, UK
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of BillyBob
Sent: 02 December 2004
On Thu, 02 Dec 2004 08:57:24 GMT, Adam Challis said:
Being based in Germany, wouldn't they be subject to German and EU law?
That's a minor factual detail, and we care somewhere between diddly and squat
regarding the facts of the case. ;)
The US government of late has shown little moral or
[EMAIL PROTECTED] wrote:
That's a minor factual detail, and we care somewhere between diddly and squat
regarding the facts of the case. ;)
I didn't know they were based in Germany.
The US government of late has shown little moral or ethical qualms about
imposing its law and morality on
Adam Challis wrote:
The Computer Fraud and Abuse Act
(_http://www.usdoj.gov/criminal/cybercrime/1030_new.html_).
Being based in Germany, wouldn't they be subject to German and EU law?
Does anybody know which German and EU laws are relevant to MLNS?
Adam
IANAL, but my understanding is that some
###
Luigi Auriemma
Application: Kreed
http://www.kreed3d.com
Versions: = 1.05
Platforms:Windows
Bugs: A] in-game format string
B] forced exit caused by
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
(fast note.. written in 2 minutes with a notepad.. )
What the hell.. finally I understood!!! I know why you attempt to
defend isecom, all your security-lies-based-easy-money-bussines
belongs
to Pete ;)
I've got somethings to tell you robert..
On Thu, 2 Dec 2004 10:58:02 -0600, Randall Craig [EMAIL PROTECTED] wrote:
Ok I am super duper new to this list and also new to *nix... i will
never go back to M$ ceptin for gaming purposes... I am running on OS
X.3.3 and was wanting to know if the Security Alert pertaining to
FreeBSD would
Someone asked what the official security contact at Amazon was. Here it is.
[EMAIL PROTECTED]
The Sp3ctacle
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Not to mention this discusses US LAW, not EU.
j
On Thu, 02 Dec 2004 09:19:02 -0800 [EMAIL PROTECTED] wrote:
On Wed, 01 Dec 2004 22:22:30 EST, KrispyKringle said:
The Computer Fraud and Abuse Act
Hi Friends,
This is to announce the release of
one more article by hackingspirits.com called Anti-Virus Evasion
Techniques and Countermeasures which I delayed by almost two months
because of various reasons.
The objective of this article is to
demonstrate different possible ways
I fully understand that Nick. I am a former SMS admin and had to deal
with this fact in a corporate patch environment.
I was helping a person that didn't understand how Microsoft uses the
baseline for patching systems. I believe you looked a bit too deep into
my mail or liked to assumed I was a
I wasn't alive during the Nixon's reign of wtfs, but I don't think Nixon, or
indeed anyone engaging in underhanded political subterfuge, would be
particularly worried about the log files at insecure.org, which is what my
commentary pertained to.
This depends heavily on who decides what a felony
On Thu, 2 Dec 2004, bkfsec wrote:
Adam Challis wrote:
The Computer Fraud and Abuse Act
(_http://www.usdoj.gov/criminal/cybercrime/1030_new.html_).
Being based in Germany, wouldn't they be subject to German and EU law?
Does anybody know which German and EU laws are relevant to MLNS?
There is a security update, I just noticed it.
x-tad-smaller Security Update 2004-12-02 delivers a number of security enhancements and is recommended for all Macintosh users. This update includes the following components:
Apache
AppKit
HIToolbox
Kerberos
Postfix
PSNormalizer
Safari
On 02 Dec 2004, at 15:25, Danny wrote:
There is a security update, I just noticed it.
Security Update 2004-12-02 delivers a number of security enhancements
and is recommended for all Macintosh users. This update includes the
following components:
Apache
AppKit
HIToolbox
Kerberos
Postfix
Whether it be because of legal or other reasons
it would seem the server Lycos used to distribute
the list of spammer's servers has been taken off
line. Now the screensaver simply displays a
Please Stand By message and no get requests are sent.
=
The defaced iamge is attached.
/rave
25 matches
Mail list logo