Re: [FD] pydio vulnerabilities

2015-05-08 Thread Julius Kivimäki
https://github.com/pydio/pydio-core/commits/develop https://github.com/pydio/pydio-core/commit/2049254e7a215491019d2646a274a8fb1cf29e3b 2015-05-07 1:32 GMT+03:00 Just A Fake robottomonitorbugt...@gmail.com: Does anyone have any info on the two pydio vulnerabilities announced today? They

Re: [FD] Facebook Bug Bounty #23 - Session ID CSRF Vulnerability

2015-02-12 Thread Julius Kivimäki
Even though deleting everything is kind of a big deal, it still does not get you anywhere near that CVSS score. Here's my very generous calculator inputs: http://puu.sh/fQVB5/76c526ed5d.png ___ Sent through the Full Disclosure mailing list

Re: [FD] Lizard Stresser rekt

2015-01-12 Thread Julius Kivimäki
ayy lmao //Julius Kivimäki, leader of Lizard Squad 2015-01-12 10:29 GMT+00:00 Robert Cavanaugh sleuth1...@gmail.com: Hi FD, I'm sure you're all sick to death of hearing about Lizard Squad and the skid marks they're leaving all over the place, so we'll make this brief: Lizard Squad has been

Re: [FD] Back To The Future: Unix Wildcards Gone Wild

2014-06-27 Thread Julius Kivimäki
Um, this is well documented behavior that's been around for decades. * expands to all files in the dir as arguments to whatever, if the filename is --no-preserve-root -rf .. why shouldn't that be returned? 2014-06-26 11:40 GMT+03:00 defensecode defensec...@defensecode.com: Hi, We wanted to

Re: [FD] What do you think of Trollc?

2014-05-27 Thread Julius Kivimäki
If you actually know weev then you know that he isn't capable of running a business. 2014-05-27 21:49 GMT+03:00 Philip Cheong isc...@gmail.com: From https://www.startjoin.com/trollc *Right now if you're a software exploit developer and you want to monetize your craft to pay your rent,

Re: [FD] OpenSSH Vulnerabilities

2014-05-06 Thread Julius Kivimäki
PAM, how does it work? 2014-05-07 1:08 GMT+03:00 de...@roosoft.ltd.uk: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 http://pastebin.com/raw.?i=gjkivAf3 - -- CUT -- #exploit #openssh ░░▓▓ ░░░