Full Disclosure: Re: April 1st is here (joy). now improved

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: April 1st is here (joy). now improved

From: Szilveszter Adam <adam () hif hu>
Date: Thu, 01 Apr 2004 09:44:08 +0200

Kurt Seifried wrote:

If you're going to pull an Apil 1st hoax it's gotta be a bit less obvious
then this. Although I have no doubt this will send at least a few list
members into dizzying heights of excitement (I suppose it's cheaper then a
subscription to playboy ;).


Well if we are into folly anyway :-)

FEAR!FEAR!FEAR!********!ADVISORY!***********FEAR!FEAR!FEAR!

Security Advisory No 0x454564af

We have discovered a serious security hole after OpenBSD 3.4 defaultinstall!

After successful installation, we proceeded to the garden. There wegrabbed a carrot and pulled firmly. And whoa, instant root acess! Wenever thought it would be this easy. Really, these sorts of incidentsshould be prevented.

Due to the very serious nature of this bug, we will not disclose PoC atthis time, esp because the root has already been consumed.


For details visit our homepage

http://www.iamanidiot.com/

******************************************************

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

Subject: FW:*ALERT* NEW BID 10025 (URGENCY 9.3): Cisco CatOS Password flair loops (Mar 31)
- April 1st is here (joy). Subject: FW:*ALERT* NEW BID 10025 (URGENCY 9.3): Cisco CatOS Password Kurt Seifried (Mar 31)
  - Re: April 1st is here (joy). now improved Szilveszter Adam (Apr 01)