Full Disclosure: Re: Hotmail & Passport (.NET Accounts) Vulnerability

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Hotmail & Passport (.NET Accounts) Vulnerability

From: "Byrne Ghavalas" <security () nscs uk com>
Date: Thu, 8 May 2003 09:03:28 +0100

MS seems to have 'resolved' the problem - the server now returns
a '404 Not Found' error.

On Thu, May 08, 2003 Marc Slemko wrote:

<snip>

It definitely worked for me around 20:45 (-0700).

Microsoft may have gotten it disabled by now, they do
generally have
a very quick reaction time to such trivial stupid massive
gaping holes once they actually get the message about them.



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

RE: Hotmail & Passport (.NET Accounts), (continued)
- Re: Hotmail & Passport (.NET Accounts) Vulnerability Wayne Chang \(Pacific Northwest Software\) (May 08)
- PowerLink™ WAN Aggregator - Vune rability morning_wood (May 09)
- RE: Hotmail & Passport (.NET Accounts) Vulnerability Christopher F. Herot (May 07)
  - RE: Hotmail & Passport (.NET Accounts) Vulnerability Marc Slemko (May 07)
    - Re: Hotmail & Passport (.NET Accounts) Vulnerability Byrne Ghavalas (May 08)
  - Re: Hotmail & Passport (.NET Accounts) Vulnerability Suryanto (May 07)
  - Re: Hotmail & Passport (.NET Accounts) Vulnerability Wayne Chang \(Pacific Northwest Software\) (May 08)