| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <201408011953.s71JrxXT018552@sf01web1.securityfocus.com> Date: Fri, 1 Aug 2014 19:53:59 GMT From: np@...uritypentest.com To: bugtraq@...urityfocus.com Subject: Microsoft Exchange Multiple Vulnerabilities Exchange Multiple Internal IP Disclosures ------------------------------------------ Advisory: http://foofus.net/?p=758 http://www.securitypentest.com/2014/08/exchange-multiple-internal-ip.html Autodiscover Enumeration Vulnerability ------------------------------------------ Advisory: http://foofus.net/?p=793 http://www.securitypentest.com/2014/08/autodiscover-enumeration-vulnerability.html CAS Authentication Timing Attack ------------------------------------------ Advisory: http://foofus.net/?p=784 http://www.securitypentest.com/2014/08/cas-authentication-timing-attack.html POC video: http://www.securitypentest.com/2014/08/owa-timing-attack-poc.html Tools ------------------------------------------ http://foofus.net/?p=804
Powered by blists - more mailing lists