Dailydave mailing list archives

(no subject)

From: Charles Miller <cmiller () securityevaluators com>
Date: Fri, 6 Jul 2007 10:56:47 -0500

Have you guys seen the public auction site selling 0-days:

http://www.wslabi.com/wabisabilabi/initPublishedBid.do?

Its probably not a good idea to give out so much information about  
the vulnerabilities.  The Squirrelmail GPG Plugin one says its a  
command injection vulnerability.  Shouldn't be too hard to rediscover  
that.  Looking at it for 10 minutes, it looks like the exec in  
gpg_sign_attachment() where shell meta characters are in  
$passphrase.  I'm too lazy to install it and check.  I guess I could  
pay 1750 euros and find out!  The MKPortal one looks pretty easy to  
find too.

Its nice for someone to point these bugs out so we can go look for them!

Probably not the smartest way to run the site...

Charlie




_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

(no subject) Charles Miller (Jul 06)
- Re: (no subject) Dan Moniz (Jul 06)
- Re: SquirrelMail GPG Plugin vuln Nicob (Jul 08)