Full Disclosure mailing list archives
Re: Dan Kaminsky Disclosure Methodology + Super Critical vulnerability disclosure in Windows
From: coderman <coderman () gmail com>
Date: Fri, 25 Jul 2008 12:38:43 -0700
On Fri, Jul 25, 2008 at 11:37 AM, Fredrick Diggle <fdiggle () gmail com> wrote:
... Fredrick Diggle security would like to disclose a critical vulnerability in the Windows IPv4 network stack. This vulnerability is trivially remotely exploitable and could doom the entire internets if disclosed prior to being patched...
you bastard; i asked you not to reverse I)ruid's hashes!! also, confirmed this vuln on NeXTSTEP 2.0 through 3.3 and RISC/ULTRIX all versions. however, last known security contact for these vendors is bouncing mail. i think they've already been pwned ~_~; _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Dan Kaminsky Disclosure Methodology + Super Critical vulnerability disclosure in Windows Fredrick Diggle (Jul 25)
- Re: Dan Kaminsky Disclosure Methodology + Super Critical vulnerability disclosure in Windows coderman (Jul 25)
- Re: Dan Kaminsky Disclosure Methodology + Super Critical vulnerability disclosure in Windows Fredrick Diggle (Jul 25)
- Message not available
- Re: Dan Kaminsky Disclosure Methodology + Super Critical vulnerability disclosure in Windows Fredrick Diggle (Jul 25)
- Re: Dan Kaminsky Disclosure Methodology + Super Critical vulnerability disclosure in Windows coderman (Jul 25)
- Re: Dan Kaminsky Disclosure Methodology + Super Critical vulnerability disclosure in Windows n3td3v (Jul 25)
- Re: Dan Kaminsky Disclosure Methodology + Super Critical vulnerability disclosure in Windows eugaaa () gmail com (Jul 25)