[Full-disclosure] Blogger bug?
Peter Dawson
slash.pd at gmail.com
Mon Oct 9 01:36:29 BST 2006
Host Overflow Application eXception vulnerability is in the wild – any blog
that supports RSS and MetaWeblogAPI can be h4x0red.
We don't have confirmed vectors yet for this incident
On 10/8/06, Mike McMan <mikemcman2033 at hotmail.com> wrote:
>
> Looks like there was a bug in blogger that let someone make a fake post on
> the official Google blog.
>
> http://googleblog.blogspot.com/2006/10/about-that-fake-post.html
>
> http://www.techcrunch.com/2006/10/07/strange-things-afoot-at-the-google-blog/
>
> Anyone have any details on the bug?
>
> _________________________________________________________________
> Be seen and heard with Windows Live Messenger and Microsoft LifeCams
>
> http://clk.atdmt.com/MSN/go/msnnkwme0020000001msn/direct/01/?href=http://www.microsoft.com/hardware/digitalcommunication/default.mspx?locale=en-us&source=hmtagline
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061008/a2fccc44/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.