| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <8f1f7b60610081736u280192f6ybac9b73ba20ecd00@mail.gmail.com>
Date: Sun, 8 Oct 2006 20:36:29 -0400
From: "Peter Dawson" <slash.pd@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: Blogger bug?
Host Overflow Application eXception vulnerability is in the wild – any blog
that supports RSS and MetaWeblogAPI can be h4x0red.
We don't have confirmed vectors yet for this incident
On 10/8/06, Mike McMan <mikemcman2033@...mail.com> wrote:
>
> Looks like there was a bug in blogger that let someone make a fake post on
> the official Google blog.
>
> http://googleblog.blogspot.com/2006/10/about-that-fake-post.html
>
> http://www.techcrunch.com/2006/10/07/strange-things-afoot-at-the-google-blog/
>
> Anyone have any details on the bug?
>
> _________________________________________________________________
> Be seen and heard with Windows Live Messenger and Microsoft LifeCams
>
> http://clk.atdmt.com/MSN/go/msnnkwme0020000001msn/direct/01/?href=http://www.microsoft.com/hardware/digitalcommunication/default.mspx?locale=en-us&source=hmtagline
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists