[19523] in bugtraq
Passwords in Net.Commerce/WebSphere decryptable, any version
daemon@ATHENA.MIT.EDU (Rasmus Petersen)
Tue Mar 6 19:54:02 2001
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_001A_01C0A69A.4C42E240"
X-SMTP-MAIL-FROM: rp@officient.dk
X-SMTP-RCPT-TO: bugtraq@securityfocus.com
Message-ID: <001d01c0a691$eb7117a0$6701a8c0@officient.dk>
Date: Wed, 7 Mar 2001 00:05:19 +0100
Reply-To: Rasmus Petersen <rp@OFFICIENT.DK>
From: Rasmus Petersen <rp@OFFICIENT.DK>
To: BUGTRAQ@SECURITYFOCUS.COM
This is a multi-part message in MIME format.
------=_NextPart_000_001A_01C0A69A.4C42E240
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Seems like the IBM Net.Commerce Remote Arbitrary Command Execution =
Vulnerability discovered by Rudi Cantrell is more dangerous than first =
thought of.=20
http://suqdiq.tripod.com
- rasmus petersen
------=_NextPart_000_001A_01C0A69A.4C42E240
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 5.50.4611.1300" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT size=3D2><FONT face=3DArial>Seems like the <SPAN =
class=3Dtitle>IBM=20
Net.Commerce Remote Arbitrary Command Execution Vulnerability discovered =
by Rudi=20
Cantrell is more dangerous than first thought=20
of. </SPAN></FONT></FONT></DIV>
<DIV><FONT size=3D2><FONT face=3DArial><SPAN=20
class=3Dtitle></SPAN></FONT></FONT> </DIV>
<DIV><FONT size=3D2><FONT face=3DArial><SPAN class=3Dtitle><A=20
href=3D"http://suqdiq.tripod.com">http://suqdiq.tripod.com</A></SPAN></FO=
NT></FONT></DIV>
<DIV><FONT size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2> - rasmus=20
petersen</FONT></DIV></BODY></HTML>
------=_NextPart_000_001A_01C0A69A.4C42E240--
