lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Fri, 28 Dec 2007 17:51:28 -0500
From: Valdis.Kletnieks@...edu
To: Ifriends Exploit <ifriendsexploit@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: iFriends free video chat exploit

On Fri, 28 Dec 2007 16:09:23 CST, Ifriends Exploit said:

> If you don't have an iFriends account, and do not wish to get one, find a
> chathost utilizing EasyCam, and enter their Guest Chatroom, follow the steps
> above, except look for a file named "LSChatViewG.swf" instead... this is the
> flash file for guest chats. Once you've downloaded this file, you'll need to
> use a Flash decompiler to decompile this file, and then delete the privacy
> screen and recompile it.

Gaak. ;)

Remember kiddies - friends don't let friends deploy systems that depend on
untrusted end hosts to do validation of critical information for them.. .;)

Content of type "application/pgp-signature" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ