[Full-Disclosure] yahoo mail image verification
Eduardo Tongson
propolice at gmail.com
Mon Feb 7 15:17:19 GMT 2005
On Mon, 07 Feb 2005 12:18:34 +0100, Thierry Haven
<thierry.haven at xmcopartners.com> wrote:
> After testing the French Yahoo portal, it appears that this flaw
> actually exists. Let's hope they'll fix it soon. However, the impact of
> a bruteforce attempt is minimal if you have a strong password by default
> ...
>
> I've submitted this bug to Yahoo for review.
>
confirmed.
works with login.yahoo.com
--
Eduardo Tongson
http://i.keepsilent.net [:] GPG KeyID : 0x6033AC66
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x6033AC66
Key fingerprint : 0A86 79BA 3EC1 4B34 0D65 0E05 F9EC 98A2 6033 AC66
Full-Disclosure is hosted and sponsored by Secunia.