lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
From: purdy at (Curt Purdy)
Subject: Dull-Disclosure

You think was dissing us?  BTW, haven't gotten spyware
one since switching to FireFox 6 months ago. And the extensions rock!

Detailed information on a brace of unpatched vulnerabilities in Internet
Explorer has been posted onto a dull disclosure mailing list. The flaws
involve a cross-zone scripting vuln and a bug in IE's Local Resource Access
and pose an "extremely critical" risk to Windows users, according to
security firm Secunia. The vulnerabilities affect both Internet Explorer 6
and Outlook.

The vulnerabilities are actively being exploited in the wild to install
adware on users' systems, security researchers warn. Other exploits -
include computer viruses - based on the same techniques of tricking users
into visiting a maliciously constructed website housing malign script could

Information Security Engineer
DP Solutions


If you spend more on coffee than on IT security, you will be hacked.
What's more, you deserve to be hacked.
-- White House cybersecurity adviser Richard Clarke

Powered by blists - more mailing lists