Full Disclosure mailing list archives
Re: list of vulnerabilities discovered by realpentesting
From: Mgr. Martin Žember <zember () gmail com>
Date: Mon, 2 Sep 2013 21:48:43 +0200
Hi, it seems they explain everything on their web... ...including fuzzing configurations and exploiting how-tos: http://realpentesting.blogspot.com.es/ Martin On Mon, Sep 2, 2013 at 3:18 PM, Źmicier Januszkiewicz <gauri () tut by> wrote:
With all due respect, good sir... where's the root cause analysis? Proof-of-concept files? Anything? Windbg dump doesn't really count as a proof, you know, since anyone can fake it. 2013/9/2 Pedro Guillen <pgn.pedroguillen () gmail com>HI all! I'm part of realpentesting members and although these vulnerability was published some moths ago, now we can publicity with these CVEs identifiers. Also you can get more information about the vulnerablities which we discovered in http://realpentesting.blogspot.com.es/p/advisories.html Buffer overflow in fuzezip v.1.0 (CVE-2013-5656) (http://realpentesting.blogspot.com.es/p/blog-page.html) Mutiple vulnerabilities in pwstore 2010.8.30.0 (CVE-2013-5657 (DoS), CVE-2013-5658 (XSS)) http://realpentesting.blogspot.com.es/p/pwstore.html User Mode Write Access Violation in Wiz 5.0.3 (CVE-2013-5659) http://realpentesting.blogspot.com.es/p/realpentesting-advisory-title-user-mode.html Buffer overflow in Winarchiver V.3.2 (CVE-2013-5660) http://realpentesting.blogspot.com.es/p/blog-page_3.html This is the first time that i write to the list so sorry if i need to put something different in the mail subject Regards Pedro Guillén Núñez GXPN, OSCE Hacking as a way of live! _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Defense in depth -- the Microsoft way (part 9): erroneous documentation Stefan Kanthak (Sep 02)
- list of vulnerabilities discovered by realpentesting Pedro Guillen (Sep 02)
- Re: list of vulnerabilities discovered by realpentesting Źmicier Januszkiewicz (Sep 02)
- Re: list of vulnerabilities discovered by realpentesting Mgr . Martin Žember (Sep 02)
- Re: list of vulnerabilities discovered by realpentesting Pedro Guillen (Sep 03)
- Re: list of vulnerabilities discovered by realpentesting Źmicier Januszkiewicz (Sep 02)
- list of vulnerabilities discovered by realpentesting Pedro Guillen (Sep 02)