subject:"RE\: \[Full\-Disclosure\] Hotmail Passport \(.NET Accounts\) Vulnerability"

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

2003-09-07 Thread Nicolas Couture

This vulnerability in Microsoft's .NET passports has been fixed several months ago, read the thread correctly at http://marc.theaimsgroup.com/?t=10523647401&r=1&w=2 . I personally tried it and it will only work it the first email add

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

2003-10-13 Thread Valdis . Kletnieks

On Mon, 13 Oct 2003 13:55:49 CDT, Melissa Ferreira <[EMAIL PROTECTED]> said: > https://register.passport.net/emailpwdreset.srf?lc=1033&[EMAIL PROTECTED] om&id=&cb=&[EMAIL PROTECTED]&rst=1 Old. Already discovered by Muhammed Faisal and posted to this forum on 07 May. Is it in fact *still* funct

[Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability]

2003-10-14 Thread Daniel H. Renner

It does work, however, I believe you still need to know your old password to kick it over. -- Thanks, Dan Renner President Los Angeles Computerhelp 818-352-8700 http://losangelescomputerhelp.com ___ Full-Disclosure - We believe in it. Charter: http:

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

2003-05-07 Thread Suryanto

It did reset. - Original Message - From: "Christopher F. Herot" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Thursday, May 08, 2003 12:05 PM Subject: RE: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability > &

RE: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

2003-05-09 Thread David Vincent

what's-his-name said... "Is it me or ms never credit vulnerabilities according to http://www.microsoft.com/security/passport_issue.asp "a report was published detailing a security vulnerability(...)"? No more details or credit." ...and then asserted... "I also saw online news like http://www.vn

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

2004-04-20 Thread Jon

'https://register.passport.net/emailpwdreset.srf?lc=1033&[EMAIL PROTECTED] otmail.com&id=&cb=&[EMAIL PROTECTED]&rst=1 And youâ?Tll get an email on [EMAIL PROTECTED]' Sure you didnt mean to replace one of the email addesses in there with '[EMAIL PROTECTED]'? Even if you do, it doesn't seem to work

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

2004-04-20 Thread Valdis . Kletnieks

On Tue, 20 Apr 2004 09:27:02 EDT, fernando escobar <[EMAIL PROTECTED]> said: > I am forwarding this as it may impact people whom depend on MSN or > passport systems for business reasons. Contrary to what at > least one of the full-disclosure follow-ups reports, it does work. *YAWN*. Old news. D

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

2004-05-27 Thread tcleary2

Maybe you should email this one: [EMAIL PROTECTED] At least you'll get a reply, eh? ;-) ( apologies to Alexander MacLennan. ) Regards, tom. Tom Cleary - Security Architect "In IT, acceptable so

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

[Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability]

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

RE: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

Re: [Full-Disclosure] Hotmail & Passport (.NET Accounts) Vulnerability

8 matches

Site Navigation

Mail list logo

Footer information