|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
security problem with Royal daVinci
Dustin Destree (sigel
QUIKNET.COM)Fri, 1 Jan 1999 17:51:05 -0800
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Dr. Mudge: "L0pht Advisory - DataLynx suGuard"
- Previous message: Scott: "Re: Revisiting ufsdump under Solaris 2.6"
This is a multi-part message in MIME format.
------=_NextPart_000_0050_01BE35AF.4E1C9EC0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
ok, aleph, you told me that when I find a security problem with the =
daVinci, to let you know, ok here it is:
the PIM software for the computer (that the daVinci synches with) stores =
all data in .mdb (MS Access format), and with the PIM software, private =
records can be set up to require a password, if you use MS Access to =
read the .mdb files, you can open up the files and get the personal =
information without requiring any password whatsoever.
This bug was found by david breslauer, and another avid reader of my =
daVinci site:
http://www.quiknet.com/~sigel/davinci
--
Dustin Destree
sigelquiknet.com / sigeloldwarez.com
System Administrator SW Inc / GhettoNET
System Administrator The Static Void Project
------=_NextPart_000_0050_01BE35AF.4E1C9EC0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD W3 HTML//EN">
ok, aleph, you told me that when I =
find a=20
security problem with the daVinci, to let you know, ok here it =
is:
the PIM software for the computer (that the daVinci =
synches=20
with) stores all data in .mdb (MS Access format), and with the PIM =
software,=20
private records can be set up to require a password, if you use MS =
Access to=20
read the .mdb files, you can open up the files and get the personal =
information=20
without requiring any password whatsoever.
This bug was found by david breslauer, and another =
avid reader=20
of my daVinci site:
http://www.quiknet.com/~sigel/davinci
--
Dustin Destree
quiknet.com">sigelquiknet.com / oldwarez.com">sigeloldwarez.com
System = Administrator=20 SW Inc / GhettoNET
System Administrator The Static Void=20 Project
------=_NextPart_000_0050_01BE35AF.4E1C9EC0--
Dustin Destree
quiknet.com / oldwarez.comSystem = Administrator=20 SW Inc / GhettoNET
System Administrator The Static Void=20 Project
- Next message: Dr. Mudge: "L0pht Advisory - DataLynx suGuard"
- Previous message: Scott: "Re: Revisiting ufsdump under Solaris 2.6"