[ISN] Liu Die Yu needs a computer!

From: InfoSec News (isn@private)
Date: Tue Nov 18 2003 - 23:21:49 PST

  • Next message: InfoSec News: "[ISN] [Politech] A reply on Chinanet, spam, and blocking Chinese networks [fs]"

    http://www.malware.com/do-or-die!.html
    
    ATTENTION
    
    Some of you may not know the name Liu Die Yu [yet]. He is a rising
    rock star in the client side security field, having already found
    numerous critical bugs in the Microsoft Internet Explorer series of
    'browsers'.
    
    The most recent being a full and complete remote compromise by simply
    viewing a webpage. The very latest: "silent delivery and installation
    of an executable on a target computer. No client input other than
    viewing a webpage" now promptly patched by the manufacturer of this
    so-called browser:
    
    Six Step IE Remote Compromise Cache Attack
    
    Liu Die Yu is a brilliant teenager currently in school in China.  
    Several months ago a multi-national software manufacturing
    conglomerate gave Liu Die Yu a brand new computer with the latest and
    greatest software and gadgetry imaginable in exchange for cooperation
    and 'free' security research of their dismal products.
    
    Overwhelmed by his findings and realising that such enormous
    discoveries lay in the hands of this young man, the multi-national
    software manufacturing conglomerate immediately seized back the
    computer and cut-off all further communications with him. No doubt in
    an attempt to bury their heads in the sand, and pray that his findings
    would go away.
    
    Liu Die Yu is now without a computer of his own.
    
    It is a disgrace when in this day and age people are throwing away 
    their old computers and even paying so-called 'specialised' companies 
    to collect them and recycle them.
    
    Anyone that is interested in the future of security, and in particular 
    the development of the skills of such a young expert in the field of 
    client side security AND more importantly the security companies that 
    benefit from discoveries such as his in the creation of early warning 
    listings, databases of information and whatever other money-making 
    'scheme' one can derive from the volunteer work of others, kindly give 
    him a helping hand !
    
    What he asks for is nothing. What you all get in return is something. 
    In fact what he is asking for is too little. If you can help, get him 
    the latest and greatest. For that is what he deserves !
    
    Below are his full and complete details. Your assistance will be 
    appreciated and will be beneficial to all not only now but in the 
    future:
    
    I Need a Computer of My Own - Please Donate
    
    Target    : 749 USD for DELL Inspiron 1100 Notebook
    Collected : 0
    Percentage: 0%
    
    who
    My name is Liu Die Yu. 
    I am a bug finder.
    I have found and disclosed:
    
    -> 19 cross-domain/zone scripting vulnerabilities in Internet Explorer;
    -> 1 remote compromise vulnerability in Internet Explorer;
    -> 1 cross-domain scripting vulnerability in Mozilla;
    -> 1 cross-domain scripting vulnerability in Netscape Navigator.
    (You can get a list from my resume.)
    
    And I keep a list of Unpatched Internet Explorer bugs for the general 
    public.
    
    why
    I haven't got a job as a security researcher yet and my family don't 
    support my security work - so, I don't have a computer of my own.
    
    I provide information to the genral public for free.
    I trust however in the fact that everyone concerns according to the 
    principle of "giving and taking".
    
    how
    There are two ways:
    
    A. Donate with a credit card:
            
    B. Mail me the computer: DELL website offers such service.
    
    Contact Information
    Country       : China                          
    Telephone     : (+86)0732-2350732
    Zip           : 411105
    Street Address: Xiang Tan Da Xue #B102
    
    Thanks for paying attention to my donation page.
    
    
    
    -
    ISN is currently hosted by Attrition.org
    
    To unsubscribe email majordomo@private with 'unsubscribe isn'
    in the BODY of the mail.
    



    This archive was generated by hypermail 2b30 : Wed Nov 19 2003 - 01:55:04 PST