Search:

vulnerable script "http://www.antionline.com/sedit.php"
variable "message"

error :
Warning: getimagesize(): Read error! in /data/****/***/sedit.php on line 104

the error page could be used...

-----from FullDisclosure ----




it works on ie6+winxp.pro.ed with all the latest updates but i have not tested other browsers.


..

you have not given info about the os or the scripting lan but the following would work on windows if you can use os commands:
ipconfig/all>c:\info.txt&c:\info.txt

it would be better if you could send it to the vendor only and wait for their responce , M$
usually responds really fast and they will tell you if they are intrested or not,
then they will ask you...

---------------------------------

shell:recent
%userprofile%\recent

---------------------------------

-------------------------------------------------------------------------------------------

http://www.secinf.net/harmless_hacking_book/The_Exploit_Files_.html...

http://sec.drorshalev.com/ is one of my favorite sites,the exploits on this page are updated daily and they are all harmless so normal users can observe how these exploits work without the fear of...

new ie6 vulnerabilties posted to bugtraq on 07/11/2004 by paul@greyhats.cjb.net

1
2
3
4
5

ooops not a good week for for M$ i guess!

I think some of you guys are making a big deal out of this or maybe i do not have enough info on the subject to understand the risks bond to using IE or any other m$ product.if you are concerned...

MemorY is right we should know the code of your display.html file. here is how you can test if you have found a flaw or not:

1)IE and your os must be patched fully (go to...

attachment:my advisory on windows executing folders (securityfocus is to create a new bid on this)

also available @ http://www.securityfocus.com/archive/1/363590/

na,that b!tch is yours you can search all its holz!

Microsoft Internet Explorer Double Backslash CHM File Execution Weakness:
http://www.securityfocus.com/bid/10348/

attachment:my 3rd advisory,securityfocus is to create a new bid for this issue
also available @ bugtraq http://www.securityfocus.com/archive/1/363202

to disable your AV an attacker needs full access to your system which he can gain using different methods,when he got there he would search for some known proccess and then kill it.on windows this...

a copy of my recent advisory on ie.6 "ms-its: and mk:@MSITStore: vulnerability "

enjoy

were ya drunk when u posted this?!!delete it or soon you 'll get ashed.at least change the way the question is asked somthing like "Hi i have been infected with a trojan that i think got into my...

yesterday i was playing with dll files ie uses when i found some interesting **** inside one of 'em it was a credits page but fo some reason those azzholz @ m!crosoft had encrypted them names and...

see for your self:

http://www.securityfocus.com/bid/9698
http://www.securiteam.com/windowsntfocus/5YP020U60Q.html
http://www.w00w00.org/advisories/aim.html




na, the only thing hazerdous...

frankly i ain't know , even those gurus @secunia and securityfocus got a little bit mixed up with this i should have sent this to microsoft at first place they give you more info of what patch...

http://www.securityfocus.com/bid/9628



well no solution from securityfocus but it seems like fully patched systems are not vulnerable by fully patched i mean you have to patch both the...

This is a copy of the document i sent to securityfocus.com two days ago hope you enjoy it.


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



Internet explorer shell url handler :

not enough info ,what ver. of ie your are using which service packs you have installed,what is the site you are refferin to,......
well the only help i can give ya with the info you have provided is...

%SystemRoot%\system32\cmd.exe