|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Full-disclosure] Re: WebCalendar Multiple Vulnerabilities
From: ascii (ascii
katamail.com)
Date: Wed Nov 30 2005 - 08:10:41 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Paul Laudanski wrote:
> I too tried contacting the vendor but received no response. Your timing
> of vendor notice and vul'n release are fast unfortunately. Taking a look,
> simple functions in PHP can be called upon to fix those issues.
thanks Paul for the cooperation : )
i'm sorry i hadn't updated the advisory but now i done
* * * *
VI. VENDOR RESPONSE
We had a response from Craig Knudsen, the project leader, on 20051128
night. The same day the fast Craig resolved 3 of the 4 issues in the
REL_1_0_0 branch of CVS, so soon a new version (probably 1.0.2) will be
released to the public.
* * * *
also on the sourceforge project site there are these posts related to
this advisory (thanks Craig for the links)
http://sourceforge.net/forum/forum.php?thread_id=1392833&forum_id=11587
http://sourceforge.net/forum/forum.php?thread_id=1393468&forum_id=11587
http://sourceforge.net/mailarchive/forum.php?thread_id=9091328&forum_id=46247
http://sourceforge.net/mailarchive/forum.php?thread_id=9089995&forum_id=46247
ascii - http://www.ush.it
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]