[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Hackery Channel 01-09-01-LOLZ: Cat Spoofing against Flow Control

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Hackery Channel 01-09-01-LOLZ: Cat Spoofing against Flow Control
From: Shawn Merdinger <shawnmer@xxxxxxxxx>
Date: Mon, 2 Feb 2009 08:27:02 -0500

On Fri, Jan 30, 2009 at 12:07 PM,  <Valdis.Kletnieks@xxxxxx> wrote:
> On Thu, 29 Jan 2009 17:04:53 CST, hack ery said:
>>
>> Security Risk:  High
>> Exploitable: Local
>> Vulnerability: Arbitrary Flow Control Control, Cat Spoofing
>> Discovered by: The Hackery Channel
>
> Note the additional possibility of a brute force attack:
>
> http://icanhascheezburger.files.wordpress.com/2009/01/funny-pictures-your-cat-is-ready-to-admit-he-gained-weight.jpg

There's also potential for a low-silhouette piggyback attack vector:

http://loganbay.org/wp-content/uploads/2007/10/thundercat.jpg

Cheers,
--scm

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Secunia Research: Free Download Manager Torrent Parsing Buffer Overflows
Next by Date: [Full-disclosure] ZDI-09-010: Novell Netware Groupwise GWIA RCPT Command Buffer Overflow Vulnerability
Previous by thread: Re: [Full-disclosure] Hackery Channel 01-09-01-LOLZ: Cat Spoofing against Flow Control
Next by thread: [Full-disclosure] Secunia Research: Free Download Manager Remote Control Server Buffer Overflow
Index(es):
- Date
- Thread