-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
We have revised our Microsoft vCard advisory:
http://www.atstake.com/research/advisories/2001/a022301-1.txt
to credit Joel Moses [[EMAIL PROTECTED]] and list the related CVE
candidate number CVE#CAN-2000-0756. We should have caught that posting when
Cisco Systems Product Security Incident Response Team [EMAIL PROTECTED]
writes:
Exploitation and Public Announcements
The Cisco PSIRT is not aware of any public announcements or malicious use
of the vulnerabilities described in this advisory. These
: April 27, 2000
Application: Cart32 Shopping Cart Program
Platform: Win32
Severity: An attacker can execute commands on the web
server and modify admin password
Author: Dildog [[EMAIL PROTECTED]]
Weld
On Tue, 7 Mar 2000, Dustin Miller wrote:
This bug does not seem to affect Windows Millennium Edition Build 2476,
oddly enough. I do have Office 2000 Professional installed (retail
version), and CAG alarms with an error, but no key was created.
From the advisory:
This is proof of concept
Moderator, please change from address to [EMAIL PROTECTED] if possible.
-weld
@Stake Inc.
L0pht Research Labs
www.atstake.com www.L0pht.com
Security Advisory
Advisory Name:
