lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: 5 Apr 2003 21:16:30 -0000 From: JeiAr <jeiar@...ms.com> To: bugtraq@...urityfocus.com Subject: JpegX 2.0.0.3 Password Bypass Vulnerability JpegX 2.0.0.3 Password Bypass Vulnerability -------------------------------------------------- Written by Lawrence Kom 09/30/01 http://www.nerdlogic.org/jpegx larry@...dlogic.org aim: kloned Modified the encryption format to avoid guillermito's program. http://www.pipo.com/guillermito/jpegx/index.html Still has all previous features Can read version 1 & version 2 files. Can clean files & overwrite jpegx messages in files. Will automaticly overwrite with the new encryption format. Now includes a wizard to make it easier to read/write jpeg files. Got input? check out the new homepage. http://nerdlogic.org/jpegx Problem -------------------------------------------------- Nothin complex here. Just open a crypted .jpg with the wizard, enter ANY password and message is then successfully decrypted. Only works when using the wizard. Credits Go To JeiAr of GulfTech Computers And CASR
Powered by blists - more mailing lists