Full Disclosure mailing list archives

Re: ntpd stack evasion exploit

From: "Sean Crawford" <sean01 () accnet com au>
Date: Wed, 11 Jan 2006 12:29:35 +1100

Wednesday, January 11, 2006 9:30 AM Stan Bubrouski wrote.............

(no offense intended, this is a list to discuss the full
disclosure of vulnerabilities).


And judging from the original email I would say the Federal Reserve Bank of
Minneapolis may well be full of said vulnerabilities.

Just the fact a bank employee is posting on a public list asking for help is
insane, but this list!...WHOA

If I read a post from someone at my bank asking such things I would be
making my way to the nearest branch with a withdrawal form and a copy of the
email for the manager.

$0.02
Sean

'Shit........meet fan'

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

ntpd stack evasion exploit !bSt bitwarz Security Team (Jan 10)
- Re: ntpd stack evasion exploit Przemyslaw Frasunek (Jan 10)
  - Re: ntpd stack evasion exploit ad () heapoverflow com (Jan 10)
    - Re: ntpd stack evasion exploit Sean Crawford (Jan 10)
    - Re: ntpd stack evasion exploit George A. Theall (Jan 10)
    - Re: should have been..' How to Determine My System Vulnerabilities' Sean Crawford (Jan 10)
    - Re: should have been..' How to Determine My System Vulnerabilities' fok yo (Jan 11)
    - Re: ntpd stack evasion exploit Dave Korn (Jan 11)
    - Re: Re: ntpd stack evasion exploit Valdis . Kletnieks (Jan 11)
    - Re: Re: ntpd stack evasion exploit Dave Korn (Jan 12)
- Re: ntpd stack evasion exploit Dude VanWinkle (Jan 14)