Publication: gmane.comp.security.full-disclosure

First reported Mar 19 2014 - Updated Mar 19 2014 - 1 reports

Administrivia: The End

HiWhen Len and I created the Full-Disclosure list way back in July 2002,we knew that we'd have our fair share of legal troubles along the way.We were right. To date we've had all sorts of requests to deletethings, requests not to delete things, and a ... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
Entities: Pornography, Fake, Flooding
First reported Mar 18 2014 - Updated Mar 19 2014 - 2 reports

Re: [SPAM] [Bayesian][bayesTestMode] Re: Google vulnerabilities with PoC

http://thehackernews.com/2014/03/watch-out-scammers-targeting-google.html2014-03-17 20:44 GMT+01:00 The Doctor <drwho virtadpt.net>: ... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
First reported Mar 19 2014 - Updated Mar 19 2014 - 1 reports

USSD Sender Hacktool 1.0

What is USSD?USSD stands for Unstructured Supplementary Service Data and it's mostly use to make requests to a mobile operator. If you want to check how much money you have on your mobile sim card you can use a USSD Command for that. Entering for example ... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
First reported Mar 19 2014 - Updated Mar 19 2014 - 1 reports

Kaspersky 14.0.0.4651 RegExp Remote Denial ofService PoC2

Kaspersky has released updated for first PoC presented herehttp://www.youtube.com/watch?v=joa_9IS7U90 (http://seclists.org/fulldisclosure/2014/Mar/166)but there are still many combinations of evil patterns. For exmaple nextPoC2 is available herehttps ... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
Entities: HTML, JavaScript
First reported Mar 18 2014 - Updated Mar 19 2014 - 1 reports

Emergency patch for ShadowIRCd versions 6.3+ andElemental-IRCd 6.5+

Emergency patch for ShadowIRCd versions 6.3+ and Elemental-IRCd 6.5+A vulnerability has been discovered in Elemental-IRCd/ShadowIRCd all theway back to version 6.3. If a client does a SASL authentication before theserver is ready for it, a race condition ... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
First reported Mar 19 2014 - Updated Mar 19 2014 - 1 reports

All your PLC are belong to us (2)

Fixes for Siemens S7 1500 PLC are published.Thanks to Yury Goltsev , Ilya Karpov, AlexeyOsipov , DmitrySerebryannikov and AlexTimorin .There are a lot of, but Authentication bypass (INSUFFICIENTENTROPY/CVE-2014-2251) is the best.Links: http://scad ... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
First reported Mar 18 2014 - Updated Mar 19 2014 - 1 reports

McAfee Cloud SSO and McAfee Asset Manager vulns

1. Cloud SSO is vuln to unauthed XSS in the authentication audit form:2.1. https://twitter.com/BrandonPrry/status/4459693806569431042.1.2. McAfee Asset Manager v6.6 multiple vulnerabilities3.4. http://www.mcafee.com/us/products/asset-manager.aspx5.6. ... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
First reported Mar 18 2014 - Updated Mar 18 2014 - 2 reports

Re: Bank of the West security contact?

I might just stand corrected here (if it withstands appeal):http://www.slyck.com/story2351_Data_Breach_Settlement_Class_Action_Lawsuit_Wins_Appeal_in_Court:With so many recent data breaches and lacking security measures inplace, we know that there are ... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
First reported Mar 18 2014 - Updated Mar 18 2014 - 1 reports

[Quantum Leap Advisory] #QLA140216 - VLCReflected XSS vulnerability

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1=== Details ===Advisory: http://www.quantumleap.it/vlc-reflected-xss-vulnerability/Affected Product: VLCVersion: 2.1.3 (older versions may be affected too)=== Executive Summary ===Using a specially crafted HTTP ... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
First reported Mar 18 2014 - Updated Mar 18 2014 - 1 reports

(CFP) LACSEC 2014: Cancun, Mexico. May 7-8,2014 (EXTENDED DEADLINE)

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1- ---- cut here ----***********************************************************************CALL FOR PRESENTATIONS***********************************************************************LACSEC 20149th Network ... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
First reported Mar 18 2014 - Updated Mar 18 2014 - 1 reports

CEbot: disasm from your Twitter account

Hi,We are running CEbot, a tool that lets you reverse hexcode from your ownTwitter!How? Do this in 2 easy steps:- Tweet your hex string with either hashtag #2ce (read as:"To-Capstone-Engine"), or #cebot.- Wait 1~2 seconds, the assembly code will be sent ... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
Entities: Twitter, AT&T Inc
First reported Mar 13 2014 - Updated Mar 15 2014 - 23 reports

Re: Fwd: Google vulnerabilities with PoC

You are so incompetent.. If you want proof why don't you do it yourself?https://www.youtube.com/watch?v=G4EkgJtjDvU - Here is proof that the fileis saved and processed. If you want to question it come up with your realname, stop hiding behind fake emails. ... [Published gmane.comp.security.full-disclosure - Mar 15 2014]

Quotes

RegExp( "(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(.*){10}(."
statements like "I am XXX with YYY years of experience doing ZZZ"

More Content

All (615) | News (0) | Reports (0) | Blogs (615) | Audio/Video (0) | Fact Sheets (0) | Press Releases (0)
sort by: Date | Relevance
Administrivia: The End [Published gmane.comp.security.full-disclosure - Mar 19 2014]
Kaspersky 14.0.0.4651 RegExp Remote Denial ofSe... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
USSD Sender Hacktool 1.0 [Published gmane.comp.security.full-disclosure - Mar 19 2014]
Re: [SPAM] [Bayesian][bayesTestMode] Re: Google... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
All your PLC are belong to us (2) [Published gmane.comp.security.full-disclosure - Mar 19 2014]
Re: Bank of the West security contact? [Published gmane.comp.security.full-disclosure - Mar 18 2014]
Re: Bank of the West security contact? [Published gmane.comp.security.full-disclosure - Mar 18 2014]
McAfee Cloud SSO and McAfee Asset Manager vulns [Published gmane.comp.security.full-disclosure - Mar 18 2014]
[Quantum Leap Advisory] #QLA140216 - VLCReflect... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
(CFP) LACSEC 2014: Cancun, Mexico. May 7-8,2014... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
Emergency patch for ShadowIRCd versions 6.3+ an... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
CEbot: disasm from your Twitter account [Published gmane.comp.security.full-disclosure - Mar 18 2014]
Re: [SPAM] [Bayesian][bayesTestMode] Re: Google... [Published gmane.comp.security.full-disclosure - Mar 18 2014]
[SECURITY] [DSA 2880-1] python2.7 security update [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Garage4Hackers Ranchoddas Series - Part 2 o... [Published gmane.comp.security.full-disclosure - Mar 17 2014]
[ MDVSA-2014:064 ] udisks [Published gmane.comp.security.full-disclosure - Mar 17 2014]
[ MDVSA-2014:063 ] x2goserver [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Bank of the West security contact? [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Bank of the West security contact? [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Garage4Hackers Ranchoddas Series - Part 2 o... [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Fwd: Google vulnerabilities with PoC [Published gmane.comp.security.full-disclosure - Mar 17 2014]
[ MDVSA-2014:062 ] webmin [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Fwd: Google vulnerabilities with PoC [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Few Hrs left Webcast Reminder: Garage4Hackers R... [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Fwd: Google vulnerabilities with PoC [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Fwd: Google vulnerabilities with PoC [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Fwd: Google vulnerabilities with PoC [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Fwd: Google vulnerabilities with PoC [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Fwd: Google vulnerabilities with PoC [Published gmane.comp.security.full-disclosure - Mar 17 2014]
Re: Fwd: Google vulnerabilities with PoC [Published gmane.comp.security.full-disclosure - Mar 17 2014]
1 2 3 4 5 6 7 8 9 10 ...
In Focus
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
Content Volume
Document Volume
Network
Network

Blogs

sort by: Date | Relevance
Administrivia: The End [Published gmane.comp.security.full-disclosure - Mar 19 2014]
HiWhen Len and I created the Full-Disclosure list way back in July 2002,we knew that we'd have our fair share of legal troubles along the way.We were right. To date we've had all sorts of requests to deletethings, requests not to delete things, and a ...
Kaspersky 14.0.0.4651 RegExp Remote Denial ofSe... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
Kaspersky has released updated for first PoC presented herehttp://www.youtube.com/watch?v=joa_9IS7U90 (http://seclists.org/fulldisclosure/2014/Mar/166)but there are still many combinations of evil patterns. For exmaple nextPoC2 is available herehttps ...
USSD Sender Hacktool 1.0 [Published gmane.comp.security.full-disclosure - Mar 19 2014]
What is USSD?USSD stands for Unstructured Supplementary Service Data and it's mostly use to make requests to a mobile operator. If you want to check how much money you have on your mobile sim card you can use a USSD Command for that. Entering for example ...
Re: [SPAM] [Bayesian][bayesTestMode] Re: Google... [Published gmane.comp.security.full-disclosure - Mar 19 2014]
http://thehackernews.com/2014/03/watch-out-scammers-targeting-google.html2014-03-17 20:44 GMT+01:00 The Doctor <drwho virtadpt.net>: ...
All your PLC are belong to us (2) [Published gmane.comp.security.full-disclosure - Mar 19 2014]
Fixes for Siemens S7 1500 PLC are published.Thanks to Yury Goltsev , Ilya Karpov, AlexeyOsipov , DmitrySerebryannikov and AlexTimorin .There are a lot of, but Authentication bypass (INSUFFICIENTENTROPY/CVE-2014-2251) is the best.Links: http://scad ...
1 2 3 4 5 6 7 8 9 10 ...
Contact Us
Sales
Support


Freebase CC-BY Some image thumbnails are sourced from Freebase, licensed under CC-BY

Copyright (C) 2014 Silobreaker Ltd. All rights reserved.
The selection and placement of stories and images on any Silobreaker page are determined automatically by a computer program.
The time or date displayed reflects when an article was added to or updated in Silobreaker.