lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <050820050549.26165.427DA858000481550000663521602807410A9D0B0E039A9B979A9B@att.net>
Date: Sun May  8 06:48:35 2005
From: tuytumadre at att.net (tuytumadre@....net)
Subject: Firefox Remote Compromise Leaked

Well, apparently one of my Firefox vulnerabilities has been leaked. Mikx and I have been working on Firefox security for some time and we are trying to put together something spectacular, but unfortunatly there are always those people out there that feel they need to ruin it for people. About a week ago, Mikx and I put together a nice remote compromise for Firefox, submitted it to bugzilla, and got a bug number for it. This is the message that I just got from Bugzilla:
  
bugzilla-daemon@...illa.org to me 12:14 am (1 hour ago)
https://bugzilla.mozilla.org/show_bug.cgi?id=292691
brendan@...illa.org changed:
          What    |Removed                     |Added
----------------------------------------------------------------------------
                CC|                            |bugs@...goodger.com,
                  |                            |vladimir@...ox.com,
                  |                            |shaver@...illa.org,
                  |                            |brendan@...illa.org,
                  |                            |chofmann@...il.com
------- Additional Comments From brendan@...illa.org  2005-05-07 21:14 PDT -------
So now someone is claiming a 0day that looks a lot like this.  See bug 293302.

So apparently, the secret is out. I wish that this could have been used for good purposes but I guess that just isn't possible these days...

Here is the original PoC:
http://greyhatsecurity.org/vulntests/ffrc.htm

I suspect that my server was compromised, and I am currently using my contacts to find the culprit and bring him to justice.

Sorry to Mozilla, Mikx, and everyone else that was harmed by the inconsiderate, irresponsible actions of an individual.

Regards,
Paul
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050508/007bc08f/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ