| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <d6d0f03d0603171731q64ea332ase812c4e890827555@mail.gmail.com> Date: Sat Mar 18 01:31:46 2006 From: skodliv at gmail.com (poo) Subject: Re: Remote overflow in MSIE script action handlers (mshtml.dll) of course you have!!! i also know how to convert a cow into bacon !!!1111 On 3/17/06, Michal Zalewski <lcamtuf@...ne.ids.pl> wrote: > > On Thu, 16 Mar 2006, Michal Zalewski wrote: > > > This might not come as a surprise, but there appears to be a *very* > > interesting and apparently very much exploitable overflow in Microsoft > > Internet Explorer (mshtml.dll). > > I'd like to make a self-serving statement in response to dozens of people > who pointed out that this month, iDefense pays $10,000 per any > vulnerability that would result in a Microsoft security advisory rated > "critical"... > > YES, I HAVE THIS KNOWLEDGE. > > I simply do not subscribe to that way of making money. It might be that > I'm insane or dumb, but it feels good. > > Regards, > /mz > http://lcamtuf.coredump.cx/ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- smile tomorrow will be worse -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060318/09791056/attachment.html
Powered by blists - more mailing lists