Full Disclosure mailing list archives
RE: [lists] Credit Card data disclosure in CitrusDB
From: "Curt Purdy" <purdy () tecman com>
Date: Sun, 13 Feb 2005 06:37:38 -0600
Maximillian Dornseif wrote:
A group of students at our lab called RedTeam found an information disclosure vulnerability in CitrusDB which can result in disclosure of credit card information.
<snip> Nice job. Congrats to your students. Curt Purdy CISSP, GSEC, CNE, MCSE+I, CCDA Information Security Engineer DP Solutions ----------------------------- If you spend more on coffee than on IT security, you will be hacked. What's more, you deserve to be hacked. -- former White House cybersecurity czar Richard Clarke _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Credit Card data disclosure in CitrusDB Maximillian Dornseif (Feb 12)
- Re: Credit Card data disclosure in CitrusDB Loptr Chaote (Feb 13)
- RE: [lists] Re: Credit Card data disclosure in CitrusDB Curt Purdy (Feb 13)
- RE: [lists] Credit Card data disclosure in CitrusDB Curt Purdy (Feb 13)
- Re: Credit Card data disclosure in CitrusDB ZATAZ (Feb 13)
- Re: Credit Card data disclosure in CitrusDB Thierry Zoller (Feb 13)
- Re: Credit Card data disclosure in CitrusDB ZATAZ (Feb 13)
- Re: Credit Card data disclosure in CitrusDB Thierry Zoller (Feb 13)
- Re: Credit Card data disclosure in CitrusDB Loptr Chaote (Feb 13)