[Full-Disclosure] PoPToP Exploit.

blightninjas_at_hushmail.com
Date: 04/26/03

  • Next message: Melvyn Sopacua: "Re: [Full-Disclosure] pissed off" 
    To: full-disclosure@lists.netsys.com
Date: Fri, 25 Apr 2003 18:05:39 -0700

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    Yo, its blightninjas here to reign terror. er, yeah

    We are getting sick of clueless people posting to bugtraq, throwing up
    none working crap just to get their name out there.

    So now we are going to make you look stupid, because you are. (Yes, you
    einstein).
    A poptop exploit was released that only compiled on win32, and, well,
     not only did it great every programming rule and standard, it didn't
    work.

    Then someone came along, and ported it to linux (You john.) and did a
    great job of doing absolutely nothing. Not only did it still not compile
    on linux, but he kindly introduced new bugs.

    We can all learn from these mistakes, so I include commented versions
    of the first two exploits, along with a working new copy.

    Files:
    poptop-sane.c poptop exploit, supports targets, brute forcing, actually
    works
    poptop-port-annotated.c poptop exploit linux port, commented for your
    enjoyment
    poptop-annotate.c The original, terrible, code written by dH (now dASS),
     but hey, it doesn't matter if it works, they have their name on bugtraq!

    All files available at http://www.freewebs.com/blightninjas/

    security industry betta watch you back, blightninjas creepin like a heart
    attack.... or something
    -----BEGIN PGP SIGNATURE-----
    Version: Hush 2.2 (Java)
    Note: This signature can be verified at https://www.hushtools.com/verify

    wmEEARECACEFAj6p22caHGJsaWdodG5pbmphc0BodXNobWFpbC5jb20ACgkQ1lXHmsSz
    kSDwHgCfRyVyds0pu/AnZohQG/3v9S0KRLoAnAwKuyRAEpsxmy1bmrV+gJr2YImo
    =mJdq
    -----END PGP SIGNATURE-----

    Concerned about your privacy? Follow this link to get
    FREE encrypted email: https://www.hushmail.com/?l=2

    Big $$$ to be made with the HushMail Affiliate Program:
    https://www.hushmail.com/about.php?subloc=affiliate&l=427
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Melvyn Sopacua: "Re: [Full-Disclosure] pissed off"