lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
From: girl at catholic.org (gp)
Subject: Secret Vulns: Places of confusion

hello list


Sometimes ago I have examined the websites of many
Government's if it's possible to put malicious code
in their URLs. In November 2004 I inform some
Deparments about my successful work.


On most Sites it is possible to:
- inject SQL
- account hijacking
- user exploitation
- server manipulation
- read complete dir
ect. ect.


In Arrangement with the Victims I will not reveal
vulnerability or victim details until a fix became
published. I will answer no questions!
This is only for Your information!


Credits:
d.w., ms, [...]


--
g@cat online <-> MM
----------
.//sometimes its better to know somewhat as all but at later times would
be better to know nothing





-----------------------------------------
This email was sent using FREE Catholic Online Webmail!
http://webmail.catholic.org/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ