Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: RE: Digg Security.

RE: Digg Security.

From: Rocky <rocky.he_at_g-wizinnovations.com>
Date: Fri, 12 May 2006 12:47:40 +1000

I hope this wasn't just a case of them trying to cover up their problem by
claiming it wasn't a problem publicly while scrambling to fix it behind
closed doors. I hate it when people try to get sneaky that way. Just admit
it and be a good example of listening to those that cared enough to report
it properly.

-----Original Message-----
From: Jon Keating [mailto:jonkeating_at_gmail.com]
Sent: Friday, 12 May 2006 12:39 PM
To: steve_at_quicksilverscreen.com
Cc: vuln-dev_at_securityfocus.com
Subject: Re: Digg Security.

On 11 May 2006 21:17:07 -0000, steve_at_quicksilverscreen.com
> In an email I recieved later one of their developers told me that unless I
can show them otherwise, they would not consider this a security problem,
and would not fix it.

Looks like they did take you seriously, I copied your HTML source to
my own server and accessed the page. When I get sent to Digg.com it
gives this error:

Incident has been logged - hope you enjoyed the site while you had a chance

Jon
Received on May 11 2006

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos