Home page logo

fulldisclosure logo Full Disclosure mailing list archives

RE: Administrivia: Fool Disclosure
From: "Leeuwen, Allan van" <allan.vanleeuwen () orangemail nl>
Date: Thu, 18 Nov 2004 16:04:24 +0100

Hmmm you're sounding just like the people that were saying 'JPG is safe
because its not executable' a while back.
They seem to have all shut their mouths now....

There could very well be some form of overflow in Notepad.exe 
(although I admit there are probably so few lines of code in Notepad
that this is unlikely ... But never say never ;)

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of Exibar
Sent: Monday, November 15, 2004 10:45 PM
To: Gerry Eisenhaur; Andrew Farmer
Cc: Michael Rutledge; full-disclosure () lists netsys com
Subject: Re: [Full-disclosure] Administrivia: Fool Disclosure

can you convert it to plaintext for us please?  I think that would work
nicely.... no plain text vulns that I can think of...

----- Original Message -----
From: "Gerry Eisenhaur" <GEisenhaur () cisco com>
To: "Andrew Farmer" <andfarm () teknovis com>
Cc: "Michael Rutledge" <michael4447 () gmail com>;
<full-disclosure () lists netsys com>
Sent: Monday, November 15, 2004 1:37 PM
Subject: Re: [Full-disclosure] Administrivia: Fool Disclosure

Hash: SHA1

Why should we feel any better...
What about the libpng exploit... :)


Andrew Farmer wrote:

| On 14 Nov 2004, at 09:19, Michael Rutledge wrote:
|> On Fri, 12 Nov 2004 17:50:14 -0500 (EST), Len Rose <len () netsys com>
|> wrote:
|>> I've been wanting to share this with people for a long time,
|>> as things wind down for me, I've (finally) decided to release
|>> http://www.netsys.com/images/fool-disclosure-logo.jpg
|> Anyone check this image for GDI+ exploit?  lol
| Heh! Good point.
| It's clean. Here's a PNG version, if you're still feeling paranoid.
| http://tinypic.com/lzj1j

- --
| Gerry Eisenhaur                 |           |        |
| Cisco Security Agent           |||         |||       |
| Boxborough, Massachusetts    .|||||.     .|||||.     |
| PGP Key: 0xC13E8AFC       .:|||||||||:.:|||||||||:.  |
| 978-936-0465               C i s c o S y s t e m s   |
Version: GnuPG v1.2.5 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org


Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is alleen bestemd voor de geadresseerde. Indien u dit 
bericht onterecht ontvangt, wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het 
bericht te retourneren. Hoewel Orange maatregelen heeft genomen om virussen in deze email of attachments te voorkomen, 
dient u ook zelf na te gaan of virussen aanwezig zijn aangezien Orange niet aansprakelijk is voor computervirussen die 
veroorzaakt zijn door deze email.

The information contained in this message may be confidential and is intended to be only for the addressee. Should you 
receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return 
e-mail. Although Orange has taken steps to ensure that this email and attachments are free from any virus, you do need 
to verify the possibility of their existence as Orange can take no responsibility for any computer virus which might be 
transferred by way of this email.


Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]