IFH-ADV-31338 Denial of service vulnerability in solar devices.

["Hugo Vazquez Carapez" <ifh () hushmail com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Infohacking Security Advisory 06.21.04
www.infohacking.com
Jun 21, 2004


I. BACKGROUND

We discovered a very dangerous denial of service vulnerability in all
solar devices. This issue can be exploited easily in several ways.


II. ANALYSIS


The explotation of this issue can be achived by:

a) localy -> insulating tape: You must use an opaque tape and place it
over
the photovoltaic cell. We recomended to use TESA (TESA is the main infohacking
sponsor -> tesatape.com )

b) remotely -> extinguishing the light of the room (only works between
8:00pm to 8:00am).
This tecneeq can be combined with "bloking the windows(tm)" (yeah blackhat
teecneeq).


*Apendix 1: "bloking the windows(tm)":
- - What we need?
cardboards and TESA(of course -> tesatape.com)
- - How?
RTFM?
- - which one?
argf! sorry this is a fucking manual.. and you are reading it, so
"block da window with the cardboards" and then fix it with TESA(tesatape.com
click on IFH banner)



c) massively -> Denial of Sunlight (ppl from Groenland and north of .ru
shouldn try)
This is only allowed for very,very,very,very,very leet ppl like us (infohacking
rulz)

1- You need to hack some satellites, and to derive its trajectory causing
a partial eclipse on the wished zone.

2- Ozone injection; This way can be done injecting squid ink into 03
molecules.



III. SOLUTION

USE BATTERIES! U faggot!!!

(Rock users also can use AC/DC)



IV. WORKAROUNDS


No work.. indeed.


V. CVE INFORMATION


This is an 0day bug... so still no bid and CVE.


VII. DISCLOSURE TIMELINE


23 - AC Hugo noticed the first solar eclipse
03/11/04 Hugo buy his first palm
03/30/04 TESA buy a solar calculator for infohacking team
05/20/04 We hack iberia.com
06/17/04 File Source disclosure vulnerability in all web servers.- Discloses
(leet skills)
06/21/04 Public Disclosure


VIII. CREDIT

Hugo Vázquez Carapez http://www.infohacking.com/dirhugo.gif



Get pwned by script kiddies?
Call us, we can hack you again.


IX. LEGAL NOTICES


Copyright (c) 2004 INFOHACKING, Inc.


Permission is granted for the redistribution of this alert
electronically. It may not be edited in any way without the express
written consent of INFOHACKING. If you wish to reprint the whole or any

part of this alert in any other medium other than electronically, please

email info () infohacking com for permission.


Disclaimer: Infohacking is pretty whitehat and lame. If you are a part
of the blackhat communitie, please hack and remove us from the net
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.4

wkYEARECAAYFAkDX9+IACgkQ22YWbOhPkyNGpACgkzDM+t89i22syua7nN9p03iCA8cA
oJWtXsuLqw80dHLGv4CtgcSjW5MB
=0/bZ
-----END PGP SIGNATURE-----




Concerned about your privacy? Follow this link to get
secure FREE email: http://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
http://www.hushmail.com/services.php?subloc=messenger&l=434

Promote security and make money with the Hushmail Affiliate Program: 
http://www.hushmail.com/about.php?subloc=affiliate&l=427

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html