Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: [Dailydave] dtlogin advisory
From: Dave Aitel (daveimmunitysec.com)
Date: Tue Mar 23 2004 - 15:44:45 CST
-----BEGIN PGP SIGNED MESSAGE-----
Anton A. Chuvakin wrote:
|> That's right, a UDP remote root on all of Unix. This ain't no
|> iDefense here. ;>
| I just love this advisory style :-) It boils down to: for exploit -
| go here, for fix - go f* yourself :-) And the date - this is a
| typo - right? :-) 2002 or 2003?
You can curse on this list if you want. We're all adults here. :>
Although you'll get some bounces from people with sensitive mail filters.
That date's not a typo. For full access to Immunity's research, we
offer a Vulnerability Sharing Service. Maybe some of the bugs in it
right now will be released in 2006! :> If you download the SPIKE file
for the dtlogin bug, you'll notice it says "SPIKE 2.6 or above".
Current public SPIKE is 2.8 (and outdated).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----