Re: [Full-disclosure] how i stopped worrying and loved the backdoor
DakaRand seems to work inside of VM's too Dan, if you get any new revelations on it, please do make sure you post using a different subject line. This one's getting really congested. Thanks! -- Robert Q Kim, Trade Show Marketing Strategies VP Sparkah Destination Event Management http://www.youtube.com/watch?v=RrXcLCVkFds 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [SECURITY] [DSA 2521-1] libxml2 security update
YEP... I've been getting a DOS. This helps a lot! Thanks! Jueri Aedla discovered several integer overflows in libxml, which could lead to the execution of arbitrary code or denial of service. -- Robert Q Kim Prescriber and Physician Database Director http://www.youtube.com/watch?v=vz5QDHno6l0 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [ MDVSA-2012:122 ] icedtea-web
What browsers are effected? IcedTea-Web browser plugin pass invalid pointer to a web browser. Depending on the browser used, it may cause the browser to crash or possibly execute arbitrary code (CVE-2012-3422). -- Robert Kim Social Media Management NYC and LA http://www.youtube.com/watch?v=4ploU0THuJo 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] sandboxed browsing
WOW... I'm going to have to quote you guys and blog this! Another good suggestion that came off-list, for inspection of suspicious links and sites: staged browsing using burpsuite to MitM your own browsing, and inspect responses prior to rendering in the browser. -- Robert Kim Blog / Social Media Management NYC and LA http://www.youtube.com/watch?v=4ploU0THuJo 2611 S PCH San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Konqueror 3.5.5 XFS App
Ummm... Bugs, All Programmers... Any idea if anybody is working on this? I have had persistent and ongoing issues with this exact... ummm... issue. On Sun, Jul 1, 2012 at 7:44 AM, BugsNotHugs bugsnoth...@gmail.com wrote: Old bug alert! Konqueror 3.5.5 is vulnerable to classic XFS issue, letting cross domain info and scripting happen. -- Robert Q Kim Android Apps and iPhone App Programmers Seoul http://www.youtube.com/watch?v=zFpmaEkHUZ4 Lead Recruiter in Hong Kong and Tokyo 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [SECURITY] [DSA 2472-1] gridengine security update
Guys... Great! That's 2 of 3 issues! Any eta on the previous bug reports? from my last email? Package: gridengine Vulnerability : privilege escalation Problem type : remote Debian-specific: no CVE ID : CVE-2012-0208 Dave Love discovered that users who are allowed to submit jobs to a Grid Engine installation can escalate their privileges to root because the environment is not properly sanitized before creating processes. For the stable distribution (squeeze), this problem has been fixed in version 6.2u5-1squeeze1. For the unstable distribution (sid), this problem has been fixed in version 6.2u5-6. We recommend that you upgrade your gridengine packages. -- Robert Q Kim Social Media Agencies and Consultants http://www.youtube.com/watch?v=cIFyEuGqdwI 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [Announcement] CHMag's Issue 27, April 2012 Released
Abhijeet, Thanks! I'm forwarding this out to my twitter followers too! On Thu, Apr 19, 2012 at 1:59 AM, Abhijeet Patil getabhijeetpa...@gmail.comwrote: Hello Readers, The 27th Issue - April 2012 is out now! From this month we have started a new section - Code Gyan. Code Gyan section will focus on good programming practices and snippets to mitigate various vulnerabilities. Hope you like it. This issue covers following articles:- 0x00 Tech Gyan - XSS – The Burning issue in Web Application 0x01 Tool Gyan - Sysinternals Suite 0x02 Mom's Guide - Decoding ROT using the Echo and Tr Commands in your Linux Terminal 0x03 Legal Gyan - Provisions of Sec. 66B 0x04 Matriux Vibhag - How to enable WiFi on Matriux running inside VMWare 0x05 Code Gyan - Local File Inclusion 0x05 Poster - http://chmag.in/poster/apr2012/poster-month PDF version can be download from:- http://chmag.in/issue/apr2012.pdf Check http://chmag.in/ for more articles. Submit your articles, feedback to i...@chmag.in Regards, Team CHMag http://chmag.in ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- Bob Wan Kim Sparkah Trade Show Displays and Design http://www.youtube.com/watch?v=2Ab0QooYajM 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Android wipe unreliable
WOW. this is useful! I've sold my G1 and G2 thinking I was secure but well... thanks?!?! PS... why not Google plus this so I can reshare it? On Mon, Mar 19, 2012 at 2:46 AM, Jan Schejbal jan.mailinglis...@googlemail.com wrote: We have discovered that the wipe function on Android does not reliably delete data on all devices. On a Nexus S running Android 2.3.6, we were able to recover user data after running a wipe both using the factory data reset from the menu and by wiping the device from recovery. To recover data, the device must be rooted. This can be done after the wipe by using e.g. the zergRush root exploit. (Note that the official -- Robert Q Kim Event Management Company http://www.youtube.com/watch?v=w-4z-ZwF5VA 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Iran is doing ip-and-port filtering of SSL
Hasn't Iran and China always been filtering? Do VPNs work in this case? On Thu, Feb 9, 2012 at 9:54 AM, Sai s...@saizai.com wrote: I have pretty definitive proof that Iran is doing ip-and-port based filtering of SSL. Filtering is being done by 217.218.154.250 after a hop through 217.219.96.120 / 217.219.96.132. This hop is after my source's ISP, -- Robert Q Kim eBook Programmer and iBooks Consultant http://www.youtube.com/watch?v=INXa_eTlHWk 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] when did piracy/theft become expression of freedom
HAHAHAA... Well... it's hard to convince people that data piracy is the same as physical piracy! The think that if they CAN do somehting... they have the RIGHT to DO IT! As a content producer... I can't stand this sense of entitlement... but oh well... I've just gotta tranform with the times i guess! On Fri, Jan 27, 2012 at 5:51 PM, Laurelai laure...@oneechan.org wrote: On 1/27/2012 2:24 AM, Jerry dePriest wrote: im going to the 'benz dealer in the morning to express my 1st amendment right... The Somalians are learning the hard way that it just isnt so... bma Theft: the illegal taking of another person's property without that person's permission or consent with the intent to deprive the rightful owner of it Software copying: Occurs neither on the high seas and does not deprive the rightful owner of it. The more you know. -- Robert Q Kim Technical Chinese Korean English Translator http://www.youtube.com/watch?v=QozAHbUS-VU 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Reflection Scan: an Off-Path Attack on TCP
Is there a diagram or a video? I'm not a professional IT guy so I'm gunna need something of a tutorial! HAHA! On Thu, Jan 19, 2012 at 11:22 AM, xD 0x41 sec...@gmail.com wrote: On 18 January 2012 09:45, Jan Wrobel w...@mixedbit.org wrote: Hi, This TCP session hijacking technique might be of interest to some of you. Abstract: The paper demonstrates how traffic load of a shared packet queue can be exploited as a side channel through which protected information leaks to an off-path attacker. The attacker sends to a victim a sequence of identical spoofed segments. The victim responds to each segment in the sequence (the sequence is reflected by the victim) if the segments satisfy a certain condition tested by the attacker. The responses do not reach the attacker directly, but induce extra load on a routing queue shared between the victim and the attacker. Increased processing time of packets traversing the queue reveal that the tested condition was true. The paper concentrates on the TCP, but the -- Robert Q Kim High Volume and Digital Printing Company in Seoul http://www.youtube.com/watch?v=CaWEWl8saHw San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Ubuntu 11.10 now unsecure by default
Ummm... any idea why remote SSH is not possible?!?!? o_O kinna weird! On Thu, Nov 17, 2011 at 4:23 AM, Olivier feui...@bibibox.fr wrote: Hi list, Unfortunately remote SSH connection are not allowed, I suggest guest account to be silently add in /etc/shadow for 12.04. It could be the best Ubuntu April fool ever. Maybe calibre could also be installed by default, for a root shell out of the box. -- Robert Q Kim Facebook Marketing Strategies and Web Consultant http://sparkah.com/2010/08/25/facebook-marketing-strategies-from-nyc-and-los-angeles-most-devious-minds-2/ 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Microsoft Windows vulnerability in TCP/IP Could Allow Remote Code Execution (2588516)
WOW! HA! Did you type all this from your cell phone?!?!?! It's like youre talking for hours without breathing in!!! =p On Wed, Nov 9, 2011 at 8:42 PM, xD 0x41 sec...@gmail.com wrote: Is awesome exploit yes! I have looked at this and, you dont need to be udp... only... it is TCP-IP. ... wich, i was luckily given a copy early than release date so have had time,... this whole thing reopens the old idlescan and, simly one tcp scanner, even a udp one, all you have todo is send a req, receive known SQN and ACK , thats pretty basic packet :s , and then it will open, amongst other things, UDP closed, although please note, the author of this and even technet clearly states, that it can -- Robert Q Kim Plastic Surgery Client Advisor http://sparkah.com/2011/11/12/top-plastic-surgeons-in-sf-san-francisco-to-see-in-2012/ 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] VPN providers and any providers in general...
Guys... i can't stand sites like Attrition it's all based on total heresay and feed off mob stupidity. AND it ruins perfectly good reputations. ... This is where, as i was saying... a shell owner/employee, could easily make any police run in circles simply trying to get a decent tap on something... the incompetent and twofaced should be exposed however. i hear attrition.org likes to keep lists and name names ... -- Robert Q Kim Learn to Speak Korean Fast http://www.youtube.com/watch?v=_LzTSgEgKZs 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Fix for NTFS permissions issue in QuickTime 7.x for Windows
Geoff... what other platforms does this not help? Does this apply to Android? Or am i totally missing the point? On Tue, Sep 20, 2011 at 3:42 PM, Geoff Strickler geoff.strick...@gmail.com wrote: In Dec 2010, Apple released QT 7.6.9. One of the included fixes was for Apple. While 7.6.9 corrects the problem with new installations, it does not revoke the inappropriate NTFS permissions that may have been granted by -- Robert Q Kim SEO Marketing Advisor Google Page 1 http://sparkah.com/google 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] APOLOGIES FOR MISTAKEN IDENTITY: OMKAR BELKHEDE
Huh? Am i missing something? On Wed, Aug 3, 2011 at 11:52 AM, Wonder Universe wondersoftheunivers...@gmail.com wrote: The content of the previous email is not true. It was posted by mistake from this account. I do not know this person and it was just a case of mistaken identity. OMKAR BELKHEDE, FLA -- Robert Q Kim Financial Consulting and Economic Forcast http://sparkah.com/2011/08/04/american-budget-debt-ceiling-crisis-gang-warfare/ 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] NiX - Linux Brute Forcer (the beast) has been released!]]
Are there any exclusively NiX forums? I've run into similar issues and google isnt finding much for me ugh Some people have asked what advantages NiX offers over other tools, this question should have been answered now. Good job coding it though, I can't imagine that was easy. Ryan Thanks, really difficult and time consuming project but i have verified it to be stable (45k combolist and over 1000 proxies). PS. If any of you downloaded yesterday 1.0.0 version, please download immediately the latest 1.0.1 version is i forgot to fix something important (told in CHANGELOG) before i packed the release version. If you find a bug, just let me know and i try to fix it asap. other tools? Where is SOCKS4 proxy support? Where is proxy randomization? Where is logic to drop dead proxies? Where is logic for fake-detection? Then, you should have started by that, it is that simple. We are all busy and you can't expect anyone to even have a look on your tool or link if you don't highlight how different it is from others or why you did it. As far as I am concerned, these features may be nice, but I don't need them and will stick to Medusa for the brute force tests I run from time to time (ie not often, a few times a year at most). But, to make it clear, it is just my personal opinion, I am not saying that your tool is not interesting or useless. I just gave a test-run for Hydra against my own site and noticed: It does support only single proxy, any site that has even a bit protection have working proxies) with randomization etc. This is significant advantage over any other tool. I have worked 1.5 months constantly on NiX, after i have had a little break. I will implement support for other major protocols which is now really easy after having otherwise working engine. -- Robert Q Kim Clothing Manufacturer and Garment Production http://dmresourcela.com http://www.youtube.com/watch?v=SeBa9Wz-k0s 2611 S Coast Highway San Diego, CA 92007 310 598 1606 ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] SuRe: Fwd: ipv6 flaw (is bullshit
Sure hope those 4chan boys don't take that as a challenge -- Bob wan kim Why its impossible to Get What You Want http://www.youtube.com/watch?v=HAeSgsQtYNE On Monday, October 18, 2010, king of pain n3pt...@london.com wrote: I keep an eye on you Andrew. You're in my case load. Just curious, care to go into any more detail on how the government has treated you? Few really know what it's like to be in a modern day cointelpro subject. I think people would like to know and you've been prudish on facts, probably out of a veritable casserole of fear, uncertainty, pain, daze and jade. I'd prefer to hear it in your own words; specifics if you have the courage. King of Pain, ePsyD -Original Message- From: Andrew Auernheimer glutt...@gmail.com To: king of pain n3pt...@london.com Cc: full-disclosure@lists.grok.org.uk Sent: Mon, Oct 18, 2010 8:17 pm Subject: Re: [Full-disclosure] Fwd: ipv6 flaw (is bullshit) FYI--- the prosecution has refused to comply with discovery, effectively quietly droppin the charges. I walk. On Mon, Oct 18, 2010 at 3:35 PM, king of pain n3pt...@london.com wrote: Mr. Auernheimer, ...Notions of criminal activity[1]. Interesting. ZDNet is funded by sheep dumb enough to swallow retweeted blogcruft on shiny magazine stock. Why don't you represent yourself in a court if it's so libelous? And also if you do in fact have a brand you should register a trademark or servicemark to protect your rights. How's that narcotics case coming along? 4 felonies was it?You claim you hacking iPads is a free speech case and, after all your bragging of substance abuse on the iProphet video, you suggest you may not hold culpability for this possession of this contraband because of your landmark free speech case? [2] Enjoy Prison. ZDNet, http://seclists.org/fulldisclosure/2010/Mar/84 You people at zdnet are also part of the problem. You are just another hack clogging the tubes with your spam and cruft. We don't need 50 news sources with identical content - you just get into blackhat spamwars with sensational article titles, topics on Google News and Magazine covers to get people to buy. You're a dying a breed. For christ sakes, instead of being a bunch of pretentious losers in thick rimmed glasses trying to hit on attention whores who don't put out. What is the matter with you. Evidence: [1] AUERNHEIMER, ANDREW. weev loves you. 2010-10-18. URL: http://weev.livejournal.com/ -- Robert Q Kim 2611 S Coast Highway San Diego, CA 92007 310 598 1606 My Latest Blog Post: http://sparkah.com/2010/07/29/experienced-iphone-app-developer-los-angeles-how-to-tell-if-youre-going-to-get-burnt/ http://sparkah.com/2010/08/25/facebook-marketing-strategies-from-nyc-and-los-angeles-most-devious-minds-2/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
