Full Disclosure mailing list archives
RE: Secret Vulns: Places of the confusion
From: "xtrecate" <xtrecate () spymac com>
Date: Sat, 20 Nov 2004 18:20:48 -0800
When can we expect more like this from the super ereet catholic kid security? (SECKS) -----Original Message----- From: full-disclosure-admin () lists netsys com [mailto:full-disclosure-admin () lists netsys com] On Behalf Of gp Sent: Saturday, November 20, 2004 10:51 AM To: full-disclosure () lists netsys com Subject: [Full-disclosure] Secret Vulns: Places of the confusion hello list Sometimes ago I have examined the websites of many Government's if it's possible to put malicious code in their URLs. In November 2004 I inform some Deparments about my successful work. On most Sites it is possible to: - inject SQL - account hijacking - user exploitation - server manipulation - read complete dir ect. ect. In Arrangement with the Victims I will not reveal vulnerability or victim details until a fix became published. I will answer no questions! This is only for Your information! Credits: d.w., ms, [...] -- g@cat online <-> MM ---------- .//sometimes its better to know somewhat as all but at later times would be better to know nothing ----------------------------------------- This email was sent using FREE Catholic Online Webmail! http://webmail.catholic.org/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Secret Vulns: Places of the confusion gp (Nov 20)
- RE: Secret Vulns: Places of the confusion xtrecate (Nov 20)