please don't
post-exploitation techniques, software refactoring and are motivated
to join the development team. If you are interested, please get back
to me (bernardo.damele@gmail.com). If you have no clue what the tool
is about, are excited about joining the effort, but has never written
a single line of code or you want only to appear in the AUTHORS file,
please don't waste my and your time.
For the sceptical.. No, it's not only about web application. Yes, it
helps you also to get a command prompt on the target system. Yes, it
can be used to privilege escalate to SYSTEM if the target system is
Windows.
- anything that is your own idea and/or implementation
- a valuable extension to existing ideas and/or implementations
- anything you have discovered on your own and is not discussed a lot
yet or has been accepted as a CVE (common exploit and vulnerability)
Please don't:
- Implement something which has been around for long
- Reuse something existing
U21 privileges:
- A 15 minute lightning talk on the conference
++++++++++++++++++++++++++++++++++++++++
+ Submission Procedure
++++++++++++++++++++++++++++++++++++++++
ShmooCon 2009 will continue to use a web based submission process.
This might be a bit different than what you are used to. PLEASE don't
just mail us your CFP response. If you can't follow simple directions
like these, we won't have a lot of faith in your talk. Using this
system will help us out a lot. Please visit https://cfp.shmoocon.org
and be prepared with the following information:
• Speaker name(s) and contact information
Forewarning, this has not been thoroughly tested, but it has been tested on pidgin on several windows distros and on mac os X running Adium client. The mac Adium client doesnt freeze up but is still vulnerable to the string and repeats it back without the user seeing it occurring. Been very busy the last few years and dont have time to followup or test this further, glad the list still exist, apologies for the incompleteness. Use at your own risk, and please don't use to pester others!
There is a string of characters which when entered into an AIM conversation window with another user will cause that user to repeat the same string of characters back to you, at the least this could be used to eat up bandwidth. The interesting thing about it is that when you send the instant message containing the string the other party doesnt see that or their reply back to you containing the same string, its totally invisible on the screen, you could launch an attack on someone and it doesnt open a popup IM box, transparent.
------------example--------------------
userB: ok im going to send you the string, tell me if you receive anything in the im window.
userB: userA: ?OTR:AAICAAAAxLWYQllUFJTneF0uBhdCjKyvAbB/q2HvyEG8nBmUlztLw0xe4DD50osCo4sTkCaH082Ii3ZZzMvMZJ4QERXLBKdEGH3p5x6TAuAyoyNP6jfpfVideQCeSZgOfBwY82iFeGLDyof7HN+H8ADWOb/KmwjnKQ3PWNWVtrWe+njsuDkdCRZaRUvwggsz1VLsG41gz5CxYrxpwNPEbfelQMoy6rFASf1lKNFvhHkMzvhQnRb2gAP2cXSizEfPJVTEEuwBhK5BqaUAAAAgl5zLWoOI7lQKjTXF3AhbRJguHc/VVEjXuyX950Zdf9I=.
userA: ?OTR:AAIKAAAAwIJFBPsSOhCvqu9uZJUZP6qkbMaONxAhy/lF2n4AixoRc4xNlwkHSSSqO1x5OKwTUd/Nx/xCuCjcvq42dHFj2ajkZXUKRC8NbyZDuw+2DmQZaKZMkm2N0JY7sRAwcW+vkJ2uybdCqs6YXHLbhlvvxkWoiZFrz5LlHFPtIgQG9PL8Tr5bvk2jztm5vE0V0r/V5r7ePoYo7c1vzBr/R+TMthy78MCwO/9pqVN0LIsgZ1SyUiDhDHfRIvAg2IuLOfvknA==.
- anything that is your own idea and/or implementation
- a valuable extension to existing ideas and/or implementations
- anything you have discovered on your own and is not discussed a lot
yet or has been accepted as a CVE (common exploit and vulnerability)
Please don't:
- Reuse something existing
- Implement something which has been around for long
U21 privileges:
- A 15 minute lightning talk on the conference
- anything that is your own idea and/or implementation
- a valuable extension to existing ideas and/or implementations
- anything you have discovered on your own and is not discussed a lot
yet or has been accepted as a CVE (common exploit and vulnerability)
Please don't:
- Reuse something existing
- Implement something which has been around for long
U21 privileges:
- A 15 minute lightning talk on the conference
#2. register_globals = On #
#3. For using bug you must login via a simple user. #
#4. After using bug go to this url : #
#http://[site]/[path]/modules.php?name=Downloads&d_op=Add&email=attacker@devil.net&title=zz&url=zz&description=zz
#5. I use ascii codes and null byte in url for bypass nuke security function #
# please don't change ascii code and %00. #
# #
###################################### TNX GOD ######################################
[*] TOORCON X LINEUP & TRAINING SEMINARS POSTED & PRE-REGISTRATION ENDING
We're very proud to announce our lineup for this year and wanted to remind everyone that ToorCon is happening in less than a month! We also have a couple different training workshops and a day of seminars in addition to the conference for anyone looking for training. As such, we will be closing pre-registration soon (September 12th, 2008) and are trying to let everyone know it's their last chance to get the best deals on one of the best hacker conferences in the US. As always, more information is available at http://www.toorcon.org. If you have any questions, please don't hesitate to email me.
[*] CONFERENCE
Pre-Registration: $100
Door Price: $140
September 26th-28th, 2008
WoltLab Burning Board 3.0.0 PLX
Possible WoltLab Burning Board 3.0.4 (not tested)...
Please don't use this to crack forums. All what you do with this is at your
own risk.
Rationally my mail didn't want to be a personal attack, unfortunately
yesterday when I wrote it I was a bit stressed due to various things
included the tests I did for solving the doubts raised in the previous
mails.
So please don't consider the first line and the last paragraphs of my
yesterday's mail because non-technical and moreover non-rational.
Right or not, light or weight, nothing on a security mailing list should
be outside the technical matters, moreover if there is no real reason to
reply in a certain way to who simply did a personal test.
We would like to receive two kind of proposals:
- fast talks. Duration: 20'.
- normal talks. Duration: 50'.
If you have a crazy/interesting and fresh idea that could be summarized
in fewer time, please don't hesitate and submit a fast talk. If your idea
is even crazier and need more time to be explained in depth, use the
second one: normal talk.
We are only accepting submissions in Spanish and English language. We
will do our best to have simultaneous translation in the conference room
it looks like it is simply using OTR plugin (available in both Adium and pidgin)
http://www.cypherpunks.ca/otr/Protocol-v2-3.1.0.html
On 17 Aug 2007 19:04:27 -0000, Danslo@yahoo.com <Danslo@yahoo.com> wrote:
> Forewarning, this has not been thoroughly tested, but it has been tested on pidgin on several windows distros and on mac os X running Adium client. The mac Adium client doesnt freeze up but is still vulnerable to the string and repeats it back without the user seeing it occurring. Been very busy the last few years and dont have time to followup or test this further, glad the list still exist, apologies for the incompleteness. Use at your own risk, and please don't use to pester others!
>
>
> There is a string of characters which when entered into an AIM conversation window with another user will cause that user to repeat the same string of characters back to you, at the least this could be used to eat up bandwidth. The interesting thing about it is that when you send the instant message containing the string the other party doesnt see that or their reply back to you containing the same string, its totally invisible on the screen, you could launch an attack on someone and it doesnt open a popup IM box, transparent.
>
> ------------example--------------------
|
