[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] RE: Full-Disclosure: JEPG Hype or Hope?

To: randallm@xxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] RE: Full-Disclosure: JEPG Hype or Hope?
From: r00t3d <r00t3d@xxxxxxxxx>
Date: Sun, 26 Sep 2004 22:20:29 -0700

Dear RandallM,

>This exploit (if it can becalled that) took a lot of thought to
create it and exploit it.

Yea, lots of thought, and ripped shellcode to boot! Can't beat that can ya?

>Correct me if I'm wrong but it does not fall in to the category
>of "exploit" as defined by this list.

Okay, you're wrong.

>This was truly a "created Exploit" 

Seriously? I didn't know exploits were "created" I always thought they
just appeared.

>This is nothing more then a black-hat attack. It is not a meaningful
>revealing of poor security as I've seen defined on this list.
Uh oh, are the blaqhats after us again?? I think we had all better
just pull our whitehats down over our heads and hope they go away. I
hear, if you don't move, the blaqhats won't notice you and will leave,
kind of like with bears. Anyways, last time I checked, it was't
blaqhats that disclosed exploits, it was whitehats and scene whores.

  Love,
   #MSNetworks

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: Re: [Full-Disclosure] Windoze almost managed to 200x repeat 9/11
Next by Date: [Full-Disclosure] [ GLSA 200409-34 ] X.org, XFree86: Integer and stack overflows in libXpm
Previous by thread: [Full-Disclosure] RE: Full-Disclosure: JEPG Hype or Hope?
Next by thread: [Full-Disclosure] SANS GDIscan
Index(es):
- Date
- Thread