Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Implementation of CoreST mysql vulnerability?
From: Brendan Dolan-Gavitt <mooyix () gmail com>
Date: Wed, 18 May 2005 14:05:26 -0500

   I've recently been looking at CoreLabs' paper on the weak
challenge/response mechanism in MySQL v3.23 and below
They mention that there is an implementation of the attack in Python
and Smalltalk that can be found on their website, but I haven't been
able to unearth it if it's there at all. Does anyone have a copy or
know where it might be found?

  Brendan Dolan-Gavitt
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • Implementation of CoreST mysql vulnerability? Brendan Dolan-Gavitt (May 18)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]