Re: [Full-disclosure] Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow

2008-07-02 Thread mrdkaaa
amazing :) > .:: DISCLOSURE TIMELINE > > 01/12/2008 Initial vendor notification > 01/13/2007 Initial vendor response notify research > 06/10/2007 Coordinated public disclosure > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.or

[Full-disclosure] Facebook script injection vulnerabilities

2008-07-02 Thread Jouko Pynnonen
Hello, This is a summary of various Facebook security issues found and reported since June 13, 2008. Two of the vulnerabilities still remain on the site, so no details of them are disclosed here. The rest have been fixed. Any of these could be exploited to take over the victim's web browser tempo

[Full-disclosure] Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow

2008-07-02 Thread [ISR] - Infobyte Security Research
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 || || [ISR] || Infobyte Security Research || www.infobyte.com.ar || 07.02.2008 || .:: SUMMARY Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow Version: 2.0, It is suspected that all previous versions of Groupwise Messenge

[Full-disclosure] Release of Pass-The-Hash Toolkit v1.4

2008-07-02 Thread Hernan Ochoa
Source Code: http://oss.coresecurity.com/pshtoolkit/release/1.4/pshtoolkit_v1.4-src.tgz Win32 Binaries: http://oss.coresecurity.com/pshtoolkit/release/1.4/pshtoolkit_v1.4.tgz Documentation/info: http://oss.coresecurity.com/projects/pshtoolkit.htm http://oss.coresecurity.com/pshtoolkit/doc/index.h

[Full-disclosure] n3td3v podcast

2008-07-02 Thread n3td3v
n3td3v is starting a podcast soon, I will be talking about the latest news post on n3td3v - Google Groups ... watch the internet for more info. All the best, n3td3v Public website: http://n3td3v.googlepages.com ___ Full-Disclosure - We believe in it.

[Full-disclosure] Secunia Research: VLC Media Player WAV Processing Integer Overflow

2008-07-02 Thread Secunia Research
== Secunia Research 02/07/2008 - VLC Media Player WAV Processing Integer Overflow - == Table of Contents Affected Software..

Re: [Full-disclosure] Full-Disclosure? introducing lul-disclosure.

2008-07-02 Thread mrdkaaa
Tonnerre, does it hurt you to use your brain for thinking? m. > Původní zpráva > Od: Tonnerre Lombard <[EMAIL PROTECTED]> > Předmět: Re: [Full-disclosure] Full-Disclosure? introducing lul-disclosure. > Datum: 02.7.2008 08:31:26 >

[Full-disclosure] [USN-619-1] Firefox vulnerabilities

2008-07-02 Thread Jamie Strandboge
=== Ubuntu Security Notice USN-619-1 July 02, 2008 firefox vulnerabilities CVE-2008-2798, CVE-2008-2799, CVE-2008-2800, CVE-2008-2801, CVE-2008-2802, CVE-2008-2803, CVE-2008-2805, CVE-2008-2806, CVE-2008-2807, CVE-2008-2808, CVE-

Re: [Full-disclosure] Full-Disclosure? introducing lul-disclosure.

2008-07-02 Thread root
You couldn't do the remote exploit even with a google video documenting it step by step. More like fail-disclosure. staff wrote: > Are you ready for a site that isn't full of fagottry? Where Gadi cant steal > your money or eat your lunches? Where you can freely submit lulz to be > published? Wher