headers
ascii | 1 Jul 2007 03:17

Re: New flaw found in Firefox 2.0.0.4: Firefox file input focus vulnerabilities

carl hardwick wrote:
> PoC here: http://yathong.googlepages.com/FirefoxFocusBug.html
>
> The vulnerability allows the attacker to silently redirect focus of
> selected key press events to an otherwise protected file upload form
> field. This is possible because of how onKeyDown event is handled,
> allowing the focus to be moved between the two. This enables the
> attacker to read arbitrary files on victim's system.

many thanks for sharing this : )

it's a pretty serious vulnerability as said by Zalewski

regards,
Francesco `ascii` Ongaro
http://www.ush.it

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Permalink | Reply | 1 comment |
headers
Guasconi Vincent | 1 Jul 2007 01:17
Picon

Re: New flaw found in Firefox 2.0.0.4: Firefox file input focus vulnerabilities

On 6/30/07, carl hardwick <hardwick.carl <at> gmail.com> wrote:
> New flaw found in Firefox 2.0.0.4: Firefox file input focus vulnerabilities:
> This demo is very simple. when you input some text in the textarea,
> the file input element's value will also change to it. I tested it on
> Firefox 1.5.0.12 and 2.0.0.4.
>
> PoC here: http://yathong.googlepages.com/FirefoxFocusBug.html

Is there a link between your POC and this :
http://lcamtuf.coredump.cx/focusbug/

?

> credits by - Hong

mmmhh...

--

-- 
Guasconi Vincent
Etudiant.
http://altmylife.blogspot.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Permalink | Reply | 0 comments |
headers
Guasconi Vincent | 1 Jul 2007 01:26
Picon

Re: New flaw found in Firefox 2.0.0.4: Firefox file input focus vulnerabilities

On 7/1/07, ascii <ascii <at> katamail.com> wrote:
> carl hardwick wrote:
>> PoC here: http://yathong.googlepages.com/FirefoxFocusBug.html
>> The vulnerability allows the attacker to silently redirect focus
>> [...]
>
> many thanks for sharing this : )
> it's a pretty serious vulnerability as said by Zalewski

Pretty serious for you, me, and some others.
0.02$ that it will never be patched.

--

-- 
Guasconi Vincent
Etudiant.
http://altmylife.blogspot.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Permalink | Reply | 0 comments |
headers
Guasconi Vincent | 1 Jul 2007 01:33
Picon

Re: Month of Random Hashes: DAY SEVENTEEN

On 6/30/07, Leet Sixteen <leet16y <at> yahoo.com> wrote:
> can someone please explain why a bunch of random
> hashes are posted everyday in this mailing list?
>
> what is the significance of the random hashes and why
> should i read them everday?

42

--

-- 
Guasconi Vincent
Etudiant.
http://altmylife.blogspot.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Permalink | Reply | 1 comment |
headers
Jeff MacDonald | 1 Jul 2007 03:06

Re: DOS on phrack?

On Saturday 30 June 2007 2:09 am, scott wrote:
> It seems that Phrack.org is experiencing a serious DoS.I tried a few
> times to connect today to no avail.
>

why is it that when a website is unavailable, the immediate assumption is that 
is being attacked?

regards,
--

-- 
Jeff MacDonald, 
Zoid Technologies <http://zoidtechnologies.com/>
"Web Applications That Suck Less"

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Permalink | Reply | 2 comments |
headers
matthew wollenweber | 1 Jul 2007 03:28
Picon

iPhone Roadblock

I'm one of the lucky (or possibly crazy) people that managed to get an iPhone yesterday. If you're curious, I'm very happy with it so far. I'm not an Apple nut that buys all things Apple, but after years of "smartphones" that never seemed quite right, the iPhone really seems to have hit the mark. My biggest worry was that it used Edge rather than 3G. While at some points this is noticeable, the caching and windowing mechanisms really make up for the difference. On the whole it's the best smartphone experience I've had. But you can read all the reviews in a more appropriate forum...

I'm really interested in hacking up my iPhone. Anything with a *nix OS underneath is just too tempting to leave alone. Unfortunately Apple threw a curve ball that's outside my skill set. The iPhone doesn't mount as a harddrive. I couldn't find any options in iTunes and in linux I only got:

Jun 30 21:25:42 lothlorien kernel: usb 1-4: new full speed USB device using ehci_hcd and address 15
Jun 30 21:25:42 lothlorien kernel: usb 1-4: Product: iPhone
Jun 30 21:25:42 lothlorien kernel: usb 1-4: Manufacturer: Apple Inc.
Jun 30 21:25:42 lothlorien kernel: usb 1-4: SerialNumber: XYZ123456789
Jun 30 21:25:42 lothlorien kernel: usb 1-4: configuration #1 chosen from 3 choices

USB device drivers aren't my thing. Anyone have any suggestions on how to get the thing mounted or to go about figuring out how to do so?

Thanks for any help.

--
Matthew  Wollenweber
mwollenweber <at> gmail.com | mjw <at> cyberwart.com
www.cyberwart.com 
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Permalink | Reply | 0 comments |
headers
Peter Ferrie | 1 Jul 2007 08:04
Favicon

Re: Rutkowska faces '100% undetectable malware' challenge, teasing?

The problem is that she wants the money upfront, in order to develop the 100% undetectable thing that she
doesn't have right now.  So that's a problem.

________________________________

From: full-disclosure-bounces <at> lists.grok.org.uk on behalf of Trey Keifer
Sent: Sat 6/30/2007 1:39 PM
To: Bipin Gautam
Cc: full-disclosure <at> lists.grok.org.uk
Subject: Re: [Full-disclosure]Rutkowska faces '100% undetectable malware' challenge, teasing?

Joanna has stated her technical requirements for the challenge and Thom and group has accepted them, so why
not turn this into what it really is... a bet.

The losing team agrees to pay the other $350,000 - if both groups are really so confident there shouldn't be
any issue. 

On 6/30/07, Bipin Gautam <gautam.bipin <at> gmail.com> wrote: 

	hi guys,
	
	ref: http://blogs.zdnet.com/security/?p=334
	
	so are they teasing by making her the impossible challenge at this date? :)
	
	honeypot developers have been trying to battle the same issue of 
	making the virtual machine emulate guest OS like the it is run in real
	hardware since some years now.
	
	ref: http://handlers.sans.org/tliston/ThwartingVMDetection_Liston_Skoudis.pdf 
	
	But if Rutkowska or anyone is able to succeed to make it undetectable
	in current hardware that would be genius!
	
	-bipin
	
	_______________________________________________
	Full-Disclosure - We believe in it. 
	Charter: http://lists.grok.org.uk/full-disclosure-charter.html
	Hosted and sponsored by Secunia - http://secunia.com/ 
	

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Permalink | Reply | 2 comments |
headers
scott | 1 Jul 2007 08:56

Re: Rutkowska faces '100% undetectable malware' challenge, teasing?


It sounds to me like you fella's have never to, or even read her
website.Ya know,Invisiblethings.org?

Maybe you've never heard of Blue Pill.Or Red Pill.
Or maybe it's a waste of time to tell you.

There are some methods involving timing to detect ,possibly, these types
of things,but they are easily defeated.

Scott

Peter Ferrie wrote:
> The problem is that she wants the money upfront, in order to develop the 100% undetectable thing that she
doesn't have right now.  So that's a problem.
>  
> 
> ________________________________
> 
> From: full-disclosure-bounces <at> lists.grok.org.uk on behalf of Trey Keifer
> Sent: Sat 6/30/2007 1:39 PM
> To: Bipin Gautam
> Cc: full-disclosure <at> lists.grok.org.uk
> Subject: Re: [Full-disclosure]Rutkowska faces '100% undetectable malware' challenge, teasing?
> 
> 
> Joanna has stated her technical requirements for the challenge and Thom and group has accepted them, so
why not turn this into what it really is... a bet.
> 
> The losing team agrees to pay the other $350,000 - if both groups are really so confident there shouldn't be
any issue. 
> 
> 
> 
> 
> On 6/30/07, Bipin Gautam <gautam.bipin <at> gmail.com> wrote: 
> 
> 	hi guys,
> 	
> 	ref: http://blogs.zdnet.com/security/?p=334
> 	
> 	so are they teasing by making her the impossible challenge at this date? :)
> 	
> 	honeypot developers have been trying to battle the same issue of 
> 	making the virtual machine emulate guest OS like the it is run in real
> 	hardware since some years now.
> 	
> 	ref: http://handlers.sans.org/tliston/ThwartingVMDetection_Liston_Skoudis.pdf 
> 	
> 	But if Rutkowska or anyone is able to succeed to make it undetectable
> 	in current hardware that would be genius!
> 	
> 	-bipin
> 	
> 	_______________________________________________
> 	Full-Disclosure - We believe in it. 
> 	Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> 	Hosted and sponsored by Secunia - http://secunia.com/ 
> 	
> 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
Permalink | Reply | 0 comments |
headers
scott | 1 Jul 2007 06:17

Re: DOS on phrack?


Possibly because I am a paranoid phreak who thinks security is a way to
get around this problem?

Or just maybe I should have added...or just down for maintenance?...to
my original post.That way smart asses like yourself wouldn't need to
waste their time responding to such a despot as me.

Sorry to waste your time so you could waste more time by replying in
such an unambiguous way!

Ooops.There's my Xanax.I knew I needed it!

Bad day.Sorry for the rant.^~^

scott

Jeff MacDonald wrote:

> why is it that when a website is unavailable, the immediate assumption is that 
> is being attacked?
> 
> regards,
Permalink | Reply | 1 comment |
headers
wac | 1 Jul 2007 11:29
Picon

Re: Rutkowska faces ‘100% undetectable malware’ challenge, teasing?

Blah blah blah. Please someone tell Rokowska that we know about what she calls "blue pill" since we where little kids.

It was exposed *years ago* (1995 to be exact > 12 years) by Mark A. Ludwig in his Giant Book of Computer viruses Page 391 from American Eagle Publications, Inc. Chapter "Protected mode stealth"

Basically was moving the operating system into userland and running the virus in ring-0 making it almost undetectable. It was called Isnt not blue whatever. Yes well with vanderpool technology should be a lot easier given the hardware support.

And guess what.. We are still alive even with a POC virus and it's source code available to the public.

I hate that kind of noisy sensationalist press so much. That guy is always doing it.
And btw I don't believe such thing to be totally undetectable. There's always a little catch.

Regards
Waldo


On 6/30/07, Bipin Gautam < gautam.bipin <at> gmail.com> wrote:
hi guys,

ref: http://blogs.zdnet.com/security/?p=334

so are they teasing by making her the impossible challenge at this date? :)

honeypot developers have been trying to battle the same issue of
making the virtual machine emulate guest OS like the it is run in real
hardware since some years now.

ref: http://handlers.sans.org/tliston/ThwartingVMDetection_Liston_Skoudis.pdf

But if Rutkowska or anyone is able to succeed to make it undetectable
in current hardware that would be genius!

-bipin

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/ 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Permalink | Reply | 0 comments |

Gmane