[Full-Disclosure] ANOTHER 3L33T3 ADVISO AND NOT ON PHP-CASTOR 10.3 BETA
Rik.Bobbaers at cc.kuleuven.ac.be
Tue Jul 6 09:04:18 BST 2004
Rudolf Polzer wrote:
> I didn't expect that you will actually write that since today is
> nowhere April 1th.
> If you now find a DoS in a Brainf*** interpreter by coding an endless
> loop in Brainf*** you are the first one on my gmail killfile - until
> Mar 31th, 2005. Finding the code for an endless loop in Brainf*** will
> be your own problem.
now it's time to quote you, rudolf... on his (frogman) last
"vulnerability disclosure" with php's include() function, you wrote:
<quote from divzeroATgmailDOTcom on 07/03/2004 06:19 PM>
So your next advisory will be about a BIGBUG in system() - when badly
used, an attacker can execute arbitrary code on your webserver?
as you can see... this froggyman is just a kiddie asking for some
attention. interesting for other kiddies and beginners, but absolutely
useless for this list (imho)
aka Rik Bobbaers
K.U.Leuven - LUDIT -=- Tel: +32 485 52 71 50
Rik.Bobbaers at cc.kuleuven.ac.be -=- http://harry.ulyssis.org
Full-Disclosure is hosted and sponsored by Secunia.