Re: Re: HTML Help API - Privilege Escalation

[security snot <booger () unixclan net>]

no shit!

how revolutionary!

- snot, finder of bugs without perl dash e

-----------------------------------------------------------
"Whitehat by day, booger at night - I'm the security snot."
- CISSP / CCNA / A+ Certified - www.unixclan.net/~booger/ -
-----------------------------------------------------------

On Sat, 25 Oct 2003, KF wrote:

> Snot as much as you annoy me somtimes you are always there for a good
> laugh...
> people like you make this list amusing.... keep it up.
>
> btw... pipe those mad perl.exe skillz through netcat.exe and you are in
> business. *grin*
>
> -KF
>
> security snot wrote:
>
> > C:\>perl.exe -e ...
> >
> > won't help you find bugs buddy.
> >
> > -----------------------------------------------------------
> > "Whitehat by day, booger at night - I'm the security snot."
> > - CISSP / CCNA / A+ Certified - www.unixclan.net/~booger/ -
> > -----------------------------------------------------------
> >
> > On Sat, 25 Oct 2003, KF wrote:
> >
> >
> >
> > > Well there are not setuid applications in win32 but as I mentioned above
> > > there are apps that run with elevated priv levels. Heck look at shatter
> > > type attacks... In the win32 world thats about as close to a local
> > > attack (on unix) against a setuid binary.
> > >
> > > -KF
> > >
> > >
> > >
> > > _______________________________________________
> > > Full-Disclosure - We believe in it.
> > > Charter: http://lists.netsys.com/full-disclosure-charter.html
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html