[29432] in bugtraq
Re: [INetCop Security Advisory] ++Danger++ Outblaze Web based e-mail that is exposed in very dangerous state !!!
daemon@ATHENA.MIT.EDU (Suresh Ramasubramanian)
Fri Mar 21 19:06:58 2003
Date: Thu, 20 Mar 2003 15:01:41 +0530
From: Suresh Ramasubramanian <suresh@hserus.net>
To: bugtraq@securityfocus.com, dong-h0un U <xploit@hackermail.com>
Message-ID: <20030320093141.GA35396@hserus.net>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="vtzGhvizbBRQ85DL"
Content-Disposition: inline
In-Reply-To: <20030320062435.GA22954@hserus.net>
--vtzGhvizbBRQ85DL
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Suresh Ramasubramanian [20/03/03 11:54 +0530]:
> > INetCop Security Advisory #2003-0x82-014.c
> >=20
> > Exploit can succeed manufacturing user's cookie.
>=20
> Your submission to bugtraq is pretty sketchy - there are no details, nor =
is
> there any proof of concept / sample code.
Thanks to dong-h0un U for reporting this problem (bruteforcing our cookies).
The issue described in this advisory is now apparently resolved.
srs
--=20
srs (postmaster|suresh)@outblaze.com // gpg : 420776FC
outblaze.com postmaster & messaging systems specialist
--vtzGhvizbBRQ85DL
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: Finger mallet<@>efn.org for key
iD8DBQE+eYp7eBjjyUIHdvwRAjhlAKCevTJyDwN+bDrKklel23Or/7quOACgu4VO
1N5YMftTQbr+cgbNFBuN1rk=
=qvuN
-----END PGP SIGNATURE-----
--vtzGhvizbBRQ85DL--
