|
|
Colapse all |
Post message
Re: Bugfinder Being Indicted As Criminal ("Counterfeiter") in France 2004-04-05 K-OTiK Security (Special-Alerts k-otik com) Re: Bugfinder Being Indicted As Criminal ("Counterfeiter") in France 2004-04-04 K-OTiK Security (Special-Alerts k-otik com) In-Reply-To: <20040403204252.8002.qmail (at) search.securityfocus (dot) com [email concealed]> >From: Chris Wysopal <cwysopal (at) atstake (dot) com [email concealed]> >Subject: Re: Bugfinder Being Indicted As Criminal ("Counterfeiter") in France > >Sure looks like the penalty for publishing an exploit tool will be equivalent to using the tool to com [ more ] [ reply ] Advisory: Multiple Vulnerabilities in Monit 2004-04-05 mattmurphy (at) kc.rr (dot) com [email concealed] (mattmurphy kc rr com) Multiple Vulnerabilities in Monit I. Product Description As quoted from http://www.tildeslash.com/monit/ web page: "monit is a utility for managing and monitoring, processes, files, directories and devices on a Unix system. Monit conducts automatic maintenance and repair and can execute meaningfu [ more ] [ reply ] Automated wireless client penetration tool "hotspotter" released. 2004-04-04 Max Moser (mmo remote-exploit org) I would like to announce the availability of a proof of concept tool release. Hotspotter automates a method of penetration against wireless clients, independent of the encryption mechanism used. Get it at http://www.remote-exploit.org now. Feel free to provide feedback, below you will find some [ more ] [ reply ] [Full-Disclosure] iDEFENSE Security Advisory 04.05.04: Perl win32_stat Function Buffer Overflow Vulnerability 2004-04-05 idlabs-advisories idefense com Perl win32_stat Function Buffer Overflow Vulnerability iDEFENSE Security Advisory 04.05.04 www.idefense.com/application/poi/display?id=93&type=vulnerabilities April 5, 2004 I. BACKGROUND Perl is a popular programming language due to its text manipulation capabilities and rapid development cycle. [ more ] [ reply ] Macromedia Dreamweaver Remote Database Scripts (#NISR05042004B) 2004-04-05 NGSSoftware Insight Security Research (nisr nextgenss com) NGSSoftware Insight Security Research Advisory Name: Macromedia Dreamweaver Remote Database Scripts Systems Affected: IIS/Dreamweaver MX and UltraDev 4 Severity: Critical Vendor URL: http://www.macromedia.com/ Author: David Litchfield [ david (at) ngssoftware (dot) com [email concealed] ] Date Vendor Notified: 10th March 20 [ more ] [ reply ] Multiple XSS vulnerabilities in Microsoft SharePoint Portal Server 2001 2004-04-05 Ory Segal (ory segal sanctuminc com) --[ Security Advisory --[ Multiple XSS vulnerabilities in Microsoft SharePoint Portal Server 2001 --[ Author: Ory Segal , Sanctum inc. http://www.SanctumInc.com --[ Release Date: April 5th. 2004 --[ Product: Microsoft SharePoint Portal Server 2001 --[ Severity: High --[ CVE: CAN-2004-0379 - [ more ] [ reply ] Fw: new IE vurn 2004-04-05 Philip Barnham (phycho darktech org uk) (1 replies) hey guys, i think theres a new IE vurn going about, as i was told to visit <phy|lappy> wanna see my site? www.sillyu.afraid.org <aenigma> omg this is funny www.sillyu.afraid.org <phy|lappy> check me out!! www.preview.ampuh.info :D <bleefis> wanna see my site? www.preview.ampuh.info after visiting [ more ] [ reply ] NGSSoftware Insight Security Research Advisory 2004-04-05 Peter Winter-Smith (peter ngssoftware com) [OpenPKG-SA-2004.009] OpenPKG Security Advisory (mc) 2004-04-05 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] [SECURITY] [DSA 475-1] New Linux 2.4.18 packages fix several local root exploits (hppa) 2004-04-05 joey infodrom org (Martin Schulze) [SECURITY] [DSA 473-1] New oftpd packages fix denial of service 2004-04-04 Matt Zimmerman (mdz debian org) [SECURITY] [DSA 460-2] New sysstat packages fix insecure temporary file creation 2004-04-04 Matt Zimmerman (mdz debian org) [SECURITY] [DSA 472-1] New fte packages fix buffer overflows 2004-04-04 Matt Zimmerman (mdz debian org) Re: Bugfinder Being Indicted As Criminal ("Counterfeiter") in France 2004-04-03 Chris Wysopal (cwysopal atstake com) (2 replies) In-Reply-To: <20040402143855.27920.qmail (at) www.securityfocus (dot) com [email concealed]> From: K-OTiK Security <Special-Alerts (at) k-otik (dot) com [email concealed]> >The article 323-3-1 of this "Law" will prohibit publication of any vuln. technical details, any proof of concept and any exploit. Googling and translating the law gives this: [ more ] [ reply ] Re: Bugfinder Being Indicted As Criminal ("Counterfeiter") in France 2004-04-03 Renaud Deraison (deraison nessus org) Re: Bugfinder Being Indicted As Criminal ("Counterfeiter") in France 2004-04-03 Fozzy (fozzy dmpfrance com) [securityzone (at) macromedia (dot) com [email concealed]: New Macromedia Security Zone Bulletin Posted] 2004-04-03 David Ahmad (da securityfocus com) ----- Forwarded message from Macromedia Security Zone <securityzone (at) macromedia (dot) com [email concealed]> ----- From: securityzone (at) macromedia (dot) com [email concealed] (Macromedia Security Zone) Subject: New Macromedia Security Zone Bulletin Posted Reply-To: securityzone (at) macromedia (dot) com [email concealed] (Macromedia Security Zone) Date: Fri, 2 Apr 2004 14:40:0 [ more ] [ reply ] Re: Bugfinder Being Indicted As Criminal ("Counterfeiter") in France 2004-04-02 K-OTiK Security (Special-Alerts k-otik com) In-Reply-To: <81637804AB36A644BBDE3ED9DD4E73FDC94B22 (at) hermes.eCompany (dot) gov [email concealed]> well ! this story is just a beta version of the new french liberticide law wich will come into effect very soon (next week). France became a pseudo-monarchical-democracy, where the laws are made without requiring the opini [ more ] [ reply ] IRIX Update Some Network Drivers May Leak Data 2004-04-02 SGI Security Coordinator (agent99 sgi com) eMule v0.42d Buffer Overflow 2004-04-03 Kostya Kortchinsky (kostya kortchinsky renater fr) eMule v0.42d Buffer Overflow Description ----------- A vulnerability exists in eMule v0.42d (and probably earlier versions) in the DecodeBase16(...) function. This function takes an hexadecimal string, its length, and a destination buffer (on the stack) as parameters. The function decodes whateve [ more ] [ reply ] [SECURITY] [DSA 471-1] New interchange packages fix information leak 2004-04-02 joey infodrom org (Martin Schulze) Enterprise Application Security 2004-04-02 Dave Aitel (dave immunitysec com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Immunity is proud to announce the release of a new paper by Dave Aitel, which concentrates on the specific problems of large enterprise application security. Available in PDF: http://www.immunitysec.com/papers/enterprise_specific_security.sxw.pdf Or th [ more ] [ reply ] |
|
Privacy Statement |
>From: Renaud Deraison <deraison (at) nessus (dot) org [email concealed]>
>Subject: Re: Bugfinder Being Indicted As Criminal ("Counterfeiter") in France
>
>This article now reads (roughly translated) :
>
>"Art. 323-3-1. - The fact of offering, of yielding or of placing at
[ more ] [ reply ]