|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Tonu Samuel (tonu
jes.ee)
Date: Sun Jul 15 2007 - 07:22:04 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Sat, 2007-07-14 at 08:03 -0700, Aditya K Sood wrote:
> Advisory : Phishing Vulnerability in Verisign Network
> Dated : 5 July 2007
> Severity : Critical
Sorry but Verisign plainly sucks. I found some problems in their system
when tried to get vertificates for web server. After I reported issue to
them I get continuous spam from them trying to sell their services to
me.
To reproduce those problems with their site you can issue certificate
request with empy Common Name (CN) for example. It crashes Verisign
scripts.
Tõnu
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]