You should read on same origin policy or activex kill bits. Bypassing that is considered a vulnerability.
Sent from my iPhone On Jul 9, 2010, at 12:17 AM, mutiny <[email protected]> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > It's not a new vulnerability. It's just a new exploit. Quit > bitching. > webDEViL wrote: >> I will leave that upto you to understand. >> >> >> Sent from my iPhone >> >> On Jul 8, 2010, at 11:00 PM, Shreyas Zare <[email protected]> >> wrote: >> >>> Hi, >>> >>> And how is this real player 0day when you are exploiting windows hcp >>> vulnerability? >>> >>> Regards, >>> >>> Shreyas Zare >>> >>> Sr. Information Security Researcher >>> Secfence Technologies >>> www.secfence.com >>> >>> >>> On Thu, Jul 8, 2010 at 12:13 PM, webDEViL <[email protected]> >>> wrote: >>>> http://krash.in/real-exp/exploit.ram >>>> Uses MS Help vuln. >>>> >>>> --webDEViL >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (MingW32) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iQIcBAEBAgAGBQJMNh1fAAoJEEfSyjOIQyn5rx8QAKqn7iRNdEXszE8e8mOTPOcv > Cm/ZDhc55dzRXo+2f3lzhI71UkJ71OAxefZErqjTtzbb74SdRrqe+Y0gMonuRe7Q > HiqyzowO/5DMd9HSUrNgsIjrs+qM4ppwQP46iEw/72KCT17Ts8Xo3o8jR/qu889N > jXgUkup6xfL2ZCcSC91RGCOUUq79whcBkQZBLLKKKyUq4mdV8xR1/lFiTwHqDmqy > btJHCAmBgfCzVRYQRdRLnGgW2Yvb013KQDhvC0a1+RfFEcEZqA6y1h2lbdnuo/q9 > 91VbC/zbNq7yhjOCrPvn26MSRj9GpP0LLNeG5QLK09ABVOudLvmeFQJ6+xaw5uPJ > PZVcT/d1h1GPpqkUIGzeVoIZ6IPd1+DkL7UYOmsxClubtI+829aaRnci853U8X1Z > 81DYTRRMSrxEuNHONAJhVJDBbHPy70Pas98jlP+/A5++8iJjhOyDQgitWO64wRKK > 7+nAP1PRRr4+zqJDwvPXA+3nlCypwKclvuC+t2YgDsl9ynbzjCPm9jZLUiToUDCl > YxqXv9388DaM1O+9T7DsrO19O8X6OfuANIq0NgYKm6sLjSwUq06c9V6NBvIP8OLo > D4YjCH3LzezF2Z/N/Sewx0tx46WOmWFd/6bA2h9lgETEGIEYniRVsRVMGeT1rEbb > qGtGhp+b7Bsi4+O7lEM9 > =GG49 > -----END PGP SIGNATURE----- > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
