[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Zabbix 1.6.2 Frontend Multiple Vulnerabilities

To: bob jones <bholdaaa@xxxxxxxxx>
Subject: Re: [Full-disclosure] Zabbix 1.6.2 Frontend Multiple Vulnerabilities
From: ascii <ascii@xxxxxxxxxxxx>
Date: Wed, 04 Mar 2009 10:47:00 +0000

bob jones wrote:
> Does it seriously take three people to grep for vulnerable php functions?
> You realize you could all be replaced by a 20 line perl script which would
> including debugging and xml output?

Dear Bob,

the three people are for the responsible disclosure, the vulnerability
itself has been found by a 20 line perl script which includes debugging
and xml output.

Additionally please remember that we are in Italy.

I'm sure you understand.

Kind regards,
Francesco `ascii` Ongaro
http://www.ush.it/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Zabbix 1.6.2 Frontend Multiple Vulnerabilities
  - From: ascii
- Re: [Full-disclosure] Zabbix 1.6.2 Frontend Multiple Vulnerabilities
  - From: bob jones

Prev by Date: Re: [Full-disclosure] The return of L0phtCrack
Next by Date: Re: [Full-disclosure] Apple Safari ... DoS Vulnerability
Previous by thread: Re: [Full-disclosure] Zabbix 1.6.2 Frontend Multiple Vulnerabilities
Next by thread: Re: [Full-disclosure] Zabbix 1.6.2 Frontend Multiple Vulnerabilities
Index(es):
- Date
- Thread