It is my understanding the security industry would like nothing better than a
cyber war to kick off, mass profit, mass employment, mass political capital to
hit cyber security into the main stream of society to strike at the heart of
the single mom and retired couple crowd.
Cyber War is a
Hey!
I know it's been a while, but I've been busy etc. etc. :)
After 3 years, I've finally got around to a full release number! Here is
version 1.0a, in which I've started integrating Nick von Dadelszen's
libnfc (http://www.libnfc.org/) wrapper so we can support the new
generation of usb
2009/11/30 full-disclos...@safe-mail.net
Because I said all this stuff previously I was attacked on this list, got
banned by John Cartwright...
I don't think that you got it right. In my point of view you were banned,
because you were trolling the bad way. It had nothing to do with you
Hi!
I've just released the working exploit for CTXSYS.DRVXTABC.CREATE_TABLES
injection on Oracle DB 9i/10g (CVE-2009-1991)
You can find the code on my site, http://rawlab.mindcreations.com
In particular,
Classic SQL injection:
Hello participants of Full-Disclosure.
Cross-Site Scripting are very widespread vulnerabilities. The most common
place for XSS is a search engines (local on-site search and global engines),
as I know from my experience and from my statistic of found holes at web
sites and web applications (both
great.
and i just got off that watch list
On Fri, Nov 27, 2009 at 12:30 PM, full-disclos...@safe-mail.net wrote:
What do you folks think about funsec developing into a terror cell of
security professionals?
___
Full-Disclosure - We believe in
A picture of a beer can in someone's hand does not prove it contained anything,
much less
beer. I have sometimes left glasses of things like apple juice with a bit of
ice cream
foam on top in church (when the organist needed a drink) or spoken of such. I
also recall
a lot of guys when I was in
Dear List,
I updated the whitepaper with a lot of new information, some
leveraging the vulnerability in other ways that certainly increase
the effectiveness and impact of this vulnerability.
A brief warning to those that think they are safe because they
don't accept
BLUE MOON SECURITY ADVISORY 2009-07
===
:Title: Backdoor in PyForum
:Severity: Critical
:Reporter: Blue Moon Consulting
:Products: PyForum v1.0.3
:Fixed in: --
Description
---
pyForum is a 100% python-based message board system based in the excellent
On Mon, 30 Nov 2009 05:45:53 EST, full-disclos...@safe-mail.net said:
Valdis isn't a random person either, hes proved hes pro-cyber war with a
vested interest against me saying any of this stuff.
Actually, if you paid any attention, you'd have noticed that in general
I take positions that would
What exactly do you expect the Brits to vote from the rooftops with?
They can't even legally own pointy pieces of metal. Do you expect
them to throw chip buttys and pints of ale down at the police state
thugs holding automated rifles?
This is a defacto ban on civilian use of encryption
I don't know whether it is tragic, or tragi-comic, that N3tty has clearly
been sat around foaming at the mouth at the stark realization that he is
banned from this mailing list since January 2009, and conducting
ever-more-elaborate fantasies in his mind as to what is going on in the
world.
Problem Description
===
A remote command execution vulnerability exists in the dotDefender
(3.8-5) Site Management.
dotDefender [1] is a web appliaction firewall (WAF) which 'prevents
hackers from attacking your
website.'
Technical Details
=
The Site
This is just doing too far.
He's obviously a paranoid schizophrenic who uses aliases to bring attention to
himself. This means he's a loose cannon. A potential lone wolf terrorist. Who
knows, he may decide to do something nasty to bring attention to his causes.
It's obvious as Andrew Wallace's
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Simply because a few scientist have found to be fraudulent it doesn't
mean the concept of Climate change is. Even if this was found to be
faked it is far from the only evidence.
Ali
Scientists are caught red-handed manipulating data to serve their
Yea Echelon
Also considering this is a UK based problem i cant really see the point as
in the UK its
legal to drink at any age as long as you are under parents supervision.
-rogue
On Mon, Nov 30, 2009 at 2:14 PM, glenn.everh...@chase.com wrote:
A picture of a beer can in someone's hand does
No ever stated that the climate wasn't changing. It always is. And there's
nothing man can do to change that. One major volcanic eruption does more
damage to the climate than billions of people driving cars worldwide and in
much less time.
That would should be good stewards of the earth
UK based? Not sure if someone has strayed from the OP, but this is originally
a Wisconsin-based issue, where underage drinking is also legal if accompanied
by a legal guardian or if one's spouse is of legal drinking age. That's not
the issue... I've already made my opinions on the matter
On Mon, 30 Nov 2009 15:06:46 CST, Paul Schmehl said:
Recent evidence shows that the globe is again cooling
So the CO2 emissions are the only things saving us, right Paul?
http://en.wikipedia.org/wiki/Fallen_Angels_%28science_fiction_novel%29
pgpzLb7HaUtWo.pgp
Description: PGP signature
What UoW-LaCrosse students should do is flood FB with pictures of
staged underage drinking shots and put a stop to this.
Or just start photoshopping hookers into the front seat of local cop cars.
___
Full-Disclosure - We believe in it.
Charter:
Hello participants of Full-Disclosure.
In my article Fingerprinting of Apache web server
(http://websecurity.com.ua/3725/) (it's English version of it) I wrote about
my method of identification of Apache which I developed in 2006.
This method based on feature of Apache and allows to fingerprint
Asterisk Project Security Advisory - AST-2009-010
++
| Product| Asterisk|
There's a question I ask whenever I hear a theory like this. Cui bono? Who
benefits? Who is benefiting from the climate change scaremongering? You
claim that trillions of dollars will need to be spent. If its such a scam,
then who is scamming us? The UN IPCC? A mysterious cabal of
On Mon, 30 Nov 2009 16:44:28 EST, Michael Holstein said:
What UoW-LaCrosse students should do is flood FB with pictures of
staged underage drinking shots and put a stop to this.
Or just start photoshopping hookers into the front seat of local cop cars.
Or get Google Streetview to do
Recent evidence shows that the globe is again cooling
So the CO2 emissions are the only things saving us, right Paul?
Post-hoc, ergo propter hoc.
It's a staple of climate science.
Larry Seltzer
Contributing Editor, PC Magazine
larry_selt...@ziffdavis.com
** FreeBSD local r00t 0day
Discovered Exploited by Nikolaos Rangos also known as Kingcope.
Nov 2009 BiG TiME
Go fetch your FreeBSD r00tkitz // http://www.youtube.com/watch?v=dDnhthI27Fg
There is an unbelievable simple local r00t bug in recent FreeBSD versions.
I audited FreeBSD for local r00t
On 11/30/09, Kingcope kco...@googlemail.com wrote:
Systems tested/affected
**
FreeBSD 8.0-RELEASE *** VULNERABLE
FreeBSD 7.1-RELEASE *** VULNERABLE
FreeBSD 6.3-RELEASE *** NOT VULN
FreeBSD 4.9-RELEASE *** NOT VULN
Glad I still run 6.3! How about 6.4?
Stephen Mullins wrote:
...
Britain is a lost nation from the human rights perspective. Luckily,
their problems are not our problems, yet.
First, I'm neither British nor based in the UK, despite my Email
address and this is not a defense of the UK position, which sucks.
You say our -- you
Confirmed on 7.2-RELEASE-p4 fully patched according to freebsd-update.
%sh exploit.sh
Desktop env env.c exploit exploit.c exploit.sh payload.c payload.o
private program.c program.o public public_html run.sh w00t.so.1.0
FreeBSD local r00t zeroday
by Kingcope
November 2009
env.c: In function
No, Valdis. There *is* no saving us. We are hostage to our environment, and
nothing we do or don't do will change that. We can make less or more of an
impact on our environment by being good stewards, but in the final analysis one
large metorite or one Kracow can change the earth's
Right, but you said that the global warming folks are asking for unnecessary
spending of *trillions*. Where would those trillions go? I don't see Al
Gore becoming richer than Bill Gates off carbon credits. Neither do I see
the UN gaining any more power via the IPCC. If anything, the existing
I'm going to assume this is a serious question.
You could start with the people enriching themselves off of carbon credits. Al
Gore, for one obvious example. You could continue with the people that think
the entire world should be ruled by a bureaucracy called the UN. You could go
on with
just ask Al of the Gore about his carbon trading exchange he setup
with Ken Lay of Enron fame as advisor...
http://www.youtube.com/watch?v=UjHAB62xKXI
On Tue, Dec 1, 2009 at 11:13 AM, Rohit Patnaik quanti...@gmail.com wrote:
Right, but you said that the global warming folks are asking for
7.0 not vuln.
On Mon, Nov 30, 2009 at 10:49 PM, Ed Carp e...@pobox.com wrote:
On 11/30/09, Kingcope kco...@googlemail.com wrote:
Systems tested/affected
**
FreeBSD 8.0-RELEASE *** VULNERABLE
FreeBSD 7.1-RELEASE *** VULNERABLE
FreeBSD 6.3-RELEASE ***
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Nov 30, 2009, at 6:31 PM, phantomcircuit wrote:
Confirmed on 7.2-RELEASE-p4 fully patched according to freebsd-update.
%sh exploit.sh
Desktop env env.c exploit exploit.c exploit.sh payload.c payload.o
private program.c program.o public
6.4-RELEASE not vuln
On (11/30/09 22:51), Benji wrote:
7.0 not vuln.
On Mon, Nov 30, 2009 at 10:49 PM, Ed Carp e...@pobox.com wrote:
On 11/30/09, Kingcope kco...@googlemail.com wrote:
Systems tested/affected
**
FreeBSD 8.0-RELEASE *** VULNERABLE
What is WinAppDbg?
==
The WinAppDbg python module allows developers to quickly code instrumentation
scripts in Python under a Windows environment.
It uses ctypes to wrap many Win32 API calls related to debugging, and provides
an object-oriented abstraction layer to
--On Monday, November 30, 2009 6:13 PM -0600 Rohit Patnaik
quanti...@gmail.com wrote:
Right, but you said that the global warming folks are asking for
unnecessary spending of *trillions*. Where would those trillions go?
Apparently you haven't read the proposals to deal with global warming.
watch the video, but the Al of the Gore bit is at 1.40 in
http://www.youtube.com/watch?v=VebOTc-7shU
On Tue, Dec 1, 2009 at 3:40 PM, Paul Schmehl pschmehl_li...@tx.rr.comwrote:
--On Monday, November 30, 2009 6:13 PM -0600 Rohit Patnaik
quanti...@gmail.com wrote:
Right, but you said that
7.0 not vuln.
7.0 vulnerable here,
$ ./env
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
On Nov 30, 2009, at 9:25 PM, David Berard wrote:
7.0 not vuln.
7.0 vulnerable here,
$ ./env
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
/libexec/ld-elf.so.1: environment corrupt; missing value for
41 matches
Mail list logo