[Full-Disclosure] Seti@home exploit

From: Berend-Jan Wever (SkyLinedat_private)
Date: Sun Apr 06 2003 - 03:32:24 PDT

Next message: Pavel Machek: "[Full-Disclosure] Re: Syscall implementation could lead to whether or not a file exists"

Previous message: Berend-Jan Wever: "[Full-Disclosure] Seti@home information leakage and remote compromise"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I'm only human... here's the attachment. :P

It's a stripped version with the really cool features yanked out, but I'm sure you can code those yourself... You've got to ask yourself a question though: Could there be a remote compromise in the exploit itself ? Script kiddies beware...

Last minute notice:
Seti@home has finally produced fixed versions, that's why the advisory was released today.

application/octet-stream attachment: spaceinvader.tbz2

_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: Pavel Machek: "[Full-Disclosure] Re: Syscall implementation could lead to whether or not a file exists"
Previous message: Berend-Jan Wever: "[Full-Disclosure] Seti@home information leakage and remote compromise"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Apr 06 2003 - 04:16:06 PDT