78 entries in 0.575s
: re 'professionals', i can also picture 'you wrote it like a vuln
reveal, but this is not a vuln
, this is our masters getting jus primae noctis with our raw starfishes like god intended' irritation
: douchebag: you did ~only~ the minimal interpretation of what was asked. like a schoolboy. instead of, e.g., annotating this list with 'is this an actual vuln
in actual physical trb'
: Logged on 2018-05-14 13:30 asciilifeform: ^ pretty lulzy prehistory -- usg is burning the vuln
in the most traditional way, complete with 'responsible disclosure'ism and a boeck-style 'researcher' ; nao spinning in every propaganda organ in unison as 'pgp broken!'
: <asciilifeform> ^ pretty lulzy prehistory -- usg is burning the vuln
in the most traditional way, complete with 'responsible disclosure'ism and a boeck-style 'researcher' ; nao spinning in every propaganda organ in unison as 'pgp broken!' << Apparently @hanno has a take on this too that sums to the rest of the party line "who could be using this with hygeine?"
: ^ pretty lulzy prehistory -- usg is burning the vuln
in the most traditional way, complete with 'responsible disclosure'ism and a boeck-style 'researcher' ; nao spinning in every propaganda organ in unison as 'pgp broken!' ☟
: Well they already patched my Subdomain Takeover vuln
: url -> url w/ js added in vuln
: the philosophical puzzler of 'what is a vuln
' probably cannot be answered from strictly 1side pov. consider the ultimate degenerate case, microshit, who produces more vulns every day than mircea_popescu spermatozoids , but not 1 of them dings it in any substantial way ( and many in fact are a profit )
: or other vuln
scanning utilities i've used
: Logged on 2017-06-28 00:18 Framedragger: btw maersk (some related ports) is down due to new "ransomware" (orange website says it's the same nsa "eternalblue" windows vuln
: btw maersk (some related ports) is down due to new "ransomware" (orange website says it's the same nsa "eternalblue" windows vuln
: mircea_popescu: per the tards' internal logic -- 'we burned the vuln
-- we own the tendrils'
: how do you amplify udp? i guess application-layer-specific stuff like bittorrent's uTP (which has some amplification vuln
shit iirc), etc.; also, dns
: ben_vulpes: i dun even grasp how this is a vuln
, it isn't as if 802.11 has rsa-authenticated endpoints to begin with
: (the fact that the original victim could, normally, relay his original faster than a typical plagiarist could hash, is immaterial, it is still a potential vuln
: trinque: example concerned x86 vuln
: i will add that i have not succeeded in turning up any public record of what the vuln
: well meanwhile google only shows trilema for any hannob/pgpmoduli search i do ; and i dunno how to derive an actual location from that url. when was the vuln
moduli .txt published ?
: did the power rangers ever find a remote code execution vuln
: and saying that vuln
in truecrypt management utility makes whole thing "fatally flawed to an unusable extent" is...
: asciilifeform: grsec, afaik, has had _exactly one_ publicly disclosed vuln
, to my knowledge
: (alternatively, vuln
is kept alive for some nth-generation revised variant that never lost contact)
: a simple calculation shows that - unless one is extraordinarily lucky - the effort which goes into finding a typical vuln
, vs the typical 'bug bounty' offered by, e.g., microshit, works out to approximately u.s. minimum wage.
: (ring0 code can still trigger smi by writing particular vendor-specific magic to the southbridge, but this is in no sense a vuln
: i'm half-certain that last one actually removes a vuln
: Fun fact: Media companies (or contractors thereof) are doing vuln
research on media players in order to plant bug-triggering media files on warez sites.
: in past 24 hrs, only some spew from a diffbot, and a query from a n00b re: 'ghost' vuln
: mircea_popescu: there are quite likely more women in the deep-water oceanic oil prospecting industry than in vuln
: someone refresh me on what exactly that vuln
was anyway ?
: was there a new ssh vuln
found past 24hrs?
: bounce you mayhap have a point. iirc this vuln
was writing past the end tag and adding a 2nd spurious end tag.
: Good, almost done, I had to jump in a work meeting to discuss the Bash Shellshock vuln
, and repatching some systems.. But I gave BingoBoingo an update, and will be sending it off shortly. It's my first shot at this, so I hope it's not too egregious.
: bounce: nah, that'll just give you the vuln
to fix.. i'll just hack it, he gave me perms after all.
: kuzetsa: did you secure your systems against the vuln
in nss too?
: yes, that checks if bash is vuln
: i do windows malware / vuln
: it is quite impossible to sell a vuln
this way. other than to suckers, of course.
: kakobrekla don't fix the down vuln
thing it's splendid
: I don't think there has been a root vuln
on nginx in a while
: so it'd seem bitcointalk has a xss vuln
in the trust rating system, because mpoe-pr just managed to spam trust three times by simply refreshing the page.
: i reported a gaping CSRF vuln
on havelock last year
: took me 5 seconds to find vuln
in havelockinvestments.com :P
: ThickAsThieves: Litecoin has same vuln
: could i go up to ASS and offer up a vuln
: so far they have released 2 different "patches" that "fix" the same vuln
, but not really
: how often something is used also matters, simple reported vuln
count by itself is meaningless.
: and your site is vuln