|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-Disclosure] (no subject)
Valdis.Kletnieks
vt.edu
Date: Fri Dec 05 2003 - 20:42:32 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Sat, 06 Dec 2003 11:00:35 +1300, Nick FitzGerald <nickvirus-l.demon.co.uk> said:
> Indeed -- this is a classic exploit of a classic case of several
> _really, really BAD_ design decisions.
Mea culpa. Ignore my previous posting.
I thought you were flaming the guys at visa.com, when most of the blame goes to
the crackheads who desighed the HTTP URI format and the crackheads at MS who
implemented it. ;)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQE/0UIYcC3lWbTT17ARAsODAJ93wmKlzb8iewxJw2MbURdapcUs6QCgu0Cj
rj8f6WKC8pGU+O5dlq792/M=
=ZfTA
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]