Re: [Full-disclosure] IE 0day for sale

[Gregor Schneider]

2009/12/12 Jeff Williams :
> And the question is now:
> should the Mossad, NSA, etc be considered as bad guys ?
>
that is a definately YES

gregor
-- 
just because your paranoid, doesn't mean they're not after you...
gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2
gpgp-key available
@ http://pgpkeys.pca.dfn.de:11371
@ http://pgp.mit.edu:11371/
skype:rc46fi

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[jack . a . mannino]

I found a vuln in Google Chromeits called HTML 5.

-Jack
Sent from my Verizon Wireless BlackBerry

-Original Message-
From: Jeff Williams 
Date: Sat, 12 Dec 2009 14:12:04 
To: Shyaam; 
Subject: Re: [Full-disclosure] IE 0day for sale

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Jeff Williams]

And the question is now:
should the Mossad, NSA, etc be considered as bad guys ?




2009/12/12 Jeff Williams 

> If idefense pay 7000$ for a RCE on IE, it's possibly because they sell
> theses bugs to the NSA, MOSSAD, MI10 ?
>
> From my understanding, MS do not pay for any reported vulnerability, or
> maybe i missed the "make a donation" icon on idefense website ?
>
>
>
> 2009/12/12 Shyaam 
>
> :) Good one Valdis. That is what I was exactly trying to do.
>>
>> #1. If his intent was good, he would have sent it to the vendor and to the
>> US Cert.
>> #2. His aim is to get money:
>>   a. Instead of selling it directly to black market and not getting
>> any returns, or having some legal agency stepping onto his doors he could as
>> well sell it to these companies.
>>   b. These companies DO NOT sell stuff to BLACK MARKET. Straighten
>> your facts before you accuse any of the below:
>> zdi,idefense,securiteam,immunity,etc. They have better things to do than to
>> sell it off to the bad guys.
>>
>> Besides, many people have that kind of a notion only because there are
>> many hollywood movie fanatics out there, who suspect every single entity
>> around you.
>>
>> Thanks for your creative response though :). You really cracked me up :)
>>
>> Shyaam
>>
>>
>> On Sat, Dec 12, 2009 at 2:31 AM,  wrote:
>>
>>> On Fri, 11 Dec 2009 20:13:52 EST, Jeff Williams said:
>>>
>>> > zdi,idefense,securiteam,immunity,etc is a front, your exploit will
>>> anyways
>>> > end up on the blackmarket by selling it to theses company.
>>> > How can you be that naive ?
>>>
>>> You're talking to somebody willing to sell to the highest bidder on F-D.
>>> Draw your own conclusions about whether they actually care if it ends up
>>> on
>>> the black market.
>>>
>>
>>
>>
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Jeff Williams]

If idefense pay 7000$ for a RCE on IE, it's possibly because they sell
theses bugs to the NSA, MOSSAD, MI10 ?

>From my understanding, MS do not pay for any reported vulnerability, or
maybe i missed the "make a donation" icon on idefense website ?



2009/12/12 Shyaam 

> :) Good one Valdis. That is what I was exactly trying to do.
>
> #1. If his intent was good, he would have sent it to the vendor and to the
> US Cert.
> #2. His aim is to get money:
>   a. Instead of selling it directly to black market and not getting any
> returns, or having some legal agency stepping onto his doors he could as
> well sell it to these companies.
>   b. These companies DO NOT sell stuff to BLACK MARKET. Straighten your
> facts before you accuse any of the below:
> zdi,idefense,securiteam,immunity,etc. They have better things to do than to
> sell it off to the bad guys.
>
> Besides, many people have that kind of a notion only because there are many
> hollywood movie fanatics out there, who suspect every single entity around
> you.
>
> Thanks for your creative response though :). You really cracked me up :)
>
> Shyaam
>
>
> On Sat, Dec 12, 2009 at 2:31 AM,  wrote:
>
>> On Fri, 11 Dec 2009 20:13:52 EST, Jeff Williams said:
>>
>> > zdi,idefense,securiteam,immunity,etc is a front, your exploit will
>> anyways
>> > end up on the blackmarket by selling it to theses company.
>> > How can you be that naive ?
>>
>> You're talking to somebody willing to sell to the highest bidder on F-D.
>> Draw your own conclusions about whether they actually care if it ends up
>> on
>> the black market.
>>
>
>
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Shyaam]

:) Good one Valdis. That is what I was exactly trying to do.

#1. If his intent was good, he would have sent it to the vendor and to the
US Cert.
#2. His aim is to get money:
  a. Instead of selling it directly to black market and not getting any
returns, or having some legal agency stepping onto his doors he could as
well sell it to these companies.
  b. These companies DO NOT sell stuff to BLACK MARKET. Straighten your
facts before you accuse any of the below:
zdi,idefense,securiteam,immunity,etc. They have better things to do than to
sell it off to the bad guys.

Besides, many people have that kind of a notion only because there are many
hollywood movie fanatics out there, who suspect every single entity around
you.

Thanks for your creative response though :). You really cracked me up :)

Shyaam

On Sat, Dec 12, 2009 at 2:31 AM,  wrote:

> On Fri, 11 Dec 2009 20:13:52 EST, Jeff Williams said:
>
> > zdi,idefense,securiteam,immunity,etc is a front, your exploit will
> anyways
> > end up on the blackmarket by selling it to theses company.
> > How can you be that naive ?
>
> You're talking to somebody willing to sell to the highest bidder on F-D.
> Draw your own conclusions about whether they actually care if it ends up on
> the black market.
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Valdis . Kletnieks]

On Fri, 11 Dec 2009 20:13:52 EST, Jeff Williams said:

> zdi,idefense,securiteam,immunity,etc is a front, your exploit will anyways
> end up on the blackmarket by selling it to theses company.
> How can you be that naive ?

You're talking to somebody willing to sell to the highest bidder on F-D.
Draw your own conclusions about whether they actually care if it ends up on
the black market.


pgpjFLfX2pFEv.pgp
Description: PGP signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Jeff Williams]

zdi,idefense,securiteam,immunity,etc is a front, your exploit will anyways
end up on the blackmarket by selling it to theses company.
How can you be that naive ?






2009/12/11 Shyaam 

> If you are really serious about selling, you should sell it to ZDI or
> iDefense. They do pay good money and it doesnt reach the bad hands, and it
> guarantees your money. Thats my 2 cents.
>
>   On Fri, Dec 11, 2009 at 4:23 PM, Freddie Vicious  > wrote:
>
>>   Hello list,
>>
>> I offer a 0day exploit on Microsoft Internet Explorer, versions 8, 7, 6.
>> Tested on Windows 2000/XP/2003/Vista/2008/7.
>> Serious offers only, no bullshit please :)
>>
>> --
>> Best wishes,
>> Freddie Vicious
>> http://twitter.com/viciousf
>>
>> ___
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>>
>
>
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Shyaam]

If you are really serious about selling, you should sell it to ZDI or
iDefense. They do pay good money and it doesnt reach the bad hands, and it
guarantees your money. Thats my 2 cents.

On Fri, Dec 11, 2009 at 4:23 PM, Freddie Vicious wrote:

> Hello list,
>
> I offer a 0day exploit on Microsoft Internet Explorer, versions 8, 7, 6.
> Tested on Windows 2000/XP/2003/Vista/2008/7.
> Serious offers only, no bullshit please :)
>
> --
> Best wishes,
> Freddie Vicious
> http://twitter.com/viciousf
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[mrx]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Freddie Vicious wrote:
> Hello list,
> 
> I offer a 0day exploit on Microsoft Internet Explorer, versions 8, 7, 6.
> Tested on Windows 2000/XP/2003/Vista/2008/7.
> Serious offers only, no bullshit please :)
> 
> 
> 
> 
> 
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

Hiya Freddie,

Not interested, I am a brick in the wall person myself.
Isn't that what whores do... Sell holes?
:shrug:

Besides, when has arms dealing ever helped the innocent?

mrx

- --
Mankind's systems are white sticks tapping walls.
Thanks Roy
http://www.propergander.org.uk
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEVAwUBSyLMx7Ivn8UFHWSmAQLrwgf/TmXkVyfmOXszBb8ZVArtDOyU9D2tUSX7
dKtwiBnm9TnbdeMsiEi9bx2/hImoQ/nX6DZ50SIp7D2eFxIHWE+IihrAFxwtvlJL
mV13cDgcG54jDDNQSRNYlfaCZ2OP57xmSSg+SVOaufy0tJVRrjWhHQJFjRszibLG
/gHLnbHLq6wo4dcdJJRioztJ/fxppJ6CadSH+oZfAnGauRzZw44mfEWAIAXyDcvb
I83F7z/z0N29HzcT9EJb/ltVMtMKamhA7Nu9WLkjrw6IAsqZuVRp8KJfB0dFXvik
JBbyIepSv0ju23yCpO5vyAVpy1QDOjY9B1Nxmx1TYmWehMcYJxV8hw==
=ygHH
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Nelson Brito]

Here is my 0-day for IE:

1 - Open a IE Windows;

2 - Browse your favorite URL/WEB Site

3 - Press Ctrl+W and watch 

 

/*

 * $Id: .siganture,v 1.3 2009-12-11 09:22:54-02 nbrito Exp $

 *

 * Author: Nelson Brito  

 

   Copyright(c) 2004-2009 Nelson Brito. All rights reserved worldwide.

<http://fnstenv.blogspot.com> http://fnstenv.blogspot.com */

 

From: full-disclosure-boun...@lists.grok.org.uk
[mailto:full-disclosure-boun...@lists.grok.org.uk] On Behalf Of Thor (Hammer of
God)
Sent: Friday, December 11, 2009 3:13 PM
To: Freddie Vicious; valdis.kletni...@vt.edu
Cc: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] IE 0day for sale

 

Bids for what?  An "exploit?"  What does it to?  How does it do it?  What
context does code run (assuming code runs).  What do you have to "trick" the
user into doing?  Do you actually think people are going to offer you something
based on what you've outlined here?  So far the only bullshit is what we've read
- Valdis' post is perfectly valid.

 

t

 

From: full-disclosure-boun...@lists.grok.org.uk
[mailto:full-disclosure-boun...@lists.grok.org.uk] On Behalf Of Freddie Vicious
Sent: Friday, December 11, 2009 8:42 AM
To: valdis.kletni...@vt.edu
Cc: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] IE 0day for sale

 

Mr. Valdis Kletniesks,
I'll provide proof only for serious bidders. As I said, no bullshit please.

On Fri, Dec 11, 2009 at 6:38 PM,  wrote:

On Fri, 11 Dec 2009 18:23:54 +0200, Freddie Vicious said:

> I offer a 0day exploit on Microsoft Internet Explorer, versions 8, 7, 6.
> Tested on Windows 2000/XP/2003/Vista/2008/7.
> Serious offers only, no bullshit please :)

Extraordinary claims require extraordinary proof - so convince us that
you in fact have one.




-- 
Best wishes,
Freddie Vicious
http://twitter.com/viciousf

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Thor (Hammer of God)]

Bids for what?  An "exploit?"  What does it to?  How does it do it?  What 
context does code run (assuming code runs).  What do you have to "trick" the 
user into doing?  Do you actually think people are going to offer you something 
based on what you've outlined here?  So far the only bullshit is what we've 
read - Valdis' post is perfectly valid.

t

From: full-disclosure-boun...@lists.grok.org.uk 
[mailto:full-disclosure-boun...@lists.grok.org.uk] On Behalf Of Freddie Vicious
Sent: Friday, December 11, 2009 8:42 AM
To: valdis.kletni...@vt.edu
Cc: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] IE 0day for sale

Mr. Valdis Kletniesks,
I'll provide proof only for serious bidders. As I said, no bullshit please.
On Fri, Dec 11, 2009 at 6:38 PM, 
mailto:valdis.kletni...@vt.edu>> wrote:
On Fri, 11 Dec 2009 18:23:54 +0200, Freddie Vicious said:

> I offer a 0day exploit on Microsoft Internet Explorer, versions 8, 7, 6.
> Tested on Windows 2000/XP/2003/Vista/2008/7.
> Serious offers only, no bullshit please :)
Extraordinary claims require extraordinary proof - so convince us that
you in fact have one.



--
Best wishes,
Freddie Vicious
http://twitter.com/viciousf
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Michael Lenz]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

If there was proof, I'd bid.
But as there is none and you don't intend to "disclose" any proof
without a prior bid..

Freddie Vicious schrieb:
> Mr. Valdis Kletniesks,
> I'll provide proof only for serious bidders. As I said, no bullshit
> please.
>
> On Fri, Dec 11, 2009 at 6:38 PM,  > wrote:
>
> On Fri, 11 Dec 2009 18:23:54 +0200, Freddie Vicious said:
>
> > I offer a 0day exploit on Microsoft Internet Explorer,
> versions 8, 7, 6.
> > Tested on Windows 2000/XP/2003/Vista/2008/7.
> > Serious offers only, no bullshit please :)
>
> Extraordinary claims require extraordinary proof - so convince
> us that
> you in fact have one.
>
>
>
>
> --
> Best wishes,
> Freddie Vicious
> http://twitter.com/viciousf
>
> --
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAksieoEACgkQ12k6J+72BxijWgCbBAd22S6nK83gxAT9FLrH/4RW
IEUAn0dwUckz7QwDML9WOgqdfZtwysM5
=vBh+
-END PGP SIGNATURE-

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Benji]

Free dorrar?

Sent from my iPhone

On 11 Dec 2009, at 16:23, Freddie Vicious   
wrote:



Hello list,

I offer a 0day exploit on Microsoft Internet Explorer, versions 8,  
7, 6. Tested on Windows 2000/XP/2003/Vista/2008/7.

Serious offers only, no bullshit please :)

--
Best wishes,
Freddie Vicious
http://twitter.com/viciousf
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[yaroslav]

Send them to microsoft, pls. Or sell to zdi. This is a very serious
offer, absolutely no bs.



> Hello list,
>
> I offer a 0day exploit on Microsoft Internet Explorer, versions 8, 7, 6.
> Tested on Windows 2000/XP/2003/Vista/2008/7.
> Serious offers only, no bullshit please :)
>
> --
> Best wishes,
> Freddie Vicious
> http://twitter.com/viciousf
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Freddie Vicious]

Mr. Valdis Kletniesks,
I'll provide proof only for serious bidders. As I said, no bullshit please.

On Fri, Dec 11, 2009 at 6:38 PM,  wrote:

> On Fri, 11 Dec 2009 18:23:54 +0200, Freddie Vicious said:
>
> > I offer a 0day exploit on Microsoft Internet Explorer, versions 8, 7, 6.
> > Tested on Windows 2000/XP/2003/Vista/2008/7.
> > Serious offers only, no bullshit please :)
>
> Extraordinary claims require extraordinary proof - so convince us that
> you in fact have one.
>



-- 
Best wishes,
Freddie Vicious
http://twitter.com/viciousf
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Re: [Full-disclosure] IE 0day for sale

[Valdis . Kletnieks]

On Fri, 11 Dec 2009 18:23:54 +0200, Freddie Vicious said:

> I offer a 0day exploit on Microsoft Internet Explorer, versions 8, 7, 6.
> Tested on Windows 2000/XP/2003/Vista/2008/7.
> Serious offers only, no bullshit please :)

Extraordinary claims require extraordinary proof - so convince us that
you in fact have one.


pgp5MC4dY99sP.pgp
Description: PGP signature
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/