Re: Volunteer?

From: Erwin Moller <since_humans_read_this_I_am_spammed_too_much@xxxxxxxxxxxxxxxx>
Date: Mon, 06 Mar 2006 11:04:09 +0100

Lal wrote:

Hi! Sorry i could not reply sooner. the link is http://www.siphro.org/
i have backed up the db. but please be careful. :-D if you found
vulnerabilities, please report :-D Thanks again. Lal

Hi Lal,

I tried some mean stuff, mainly basic form-misusage, but I could crash your
scripts, nor could I inject mean stuff. (tested on contact.siphro.org)

Of course, I couldn't enter the admin-part of your site, if that exists in
the first place.

So, superficially looking: OK.

But if you are worried about bad guys, invite some expert that can also try
to break your hostingmachine itself.
I can hardly call myself a securityexpert. :-)

Good luck, and maybe somebody else will find some vunerability. :-)

Regards,
Erwin Moller

.

Follow-Ups:
- Re: Volunteer?
  - From: Lal

References:
- Re: Volunteer?
  - From: Lal

Prev by Date: PHP/MYSQL Project in leeds (UK)
Next by Date: Re: GD Install - Apache, Win XP
Previous by thread: Re: Volunteer?
Next by thread: Re: Volunteer?
Index(es):
- Date
- Thread

Relevant Pages

WebEx Downloader Plug-in Multiple Vulnerabilities + rant
... All these vulnerabilities were reported to WebEx by NGS Software back on the 24th February 2005 along with some other issues. ... I see that you *DID* report the vuln (the ... WebEx Downloader Plug-in Multiple Vulnerabilities ... Successful exploitation may allow execution of arbitrary code. ...
(Bugtraq)
[VulnWatch] WebEx Downloader Plug-in Multiple Vulnerabilities + rant
... All these vulnerabilities were reported to WebEx by NGS Software back on the 24th February 2005 along with some other issues. ... I see that you *DID* report the vuln (the ... WebEx Downloader Plug-in Multiple Vulnerabilities ... Successful exploitation may allow execution of arbitrary code. ...
(VulnWatch)
Re: Mac Security: Weekly Summary 04-20-2006
... Note that a vulnerability report was made by Secunia 04-21-06, ... Tom Ferris has reported some potential vulnerabilities in Mac OS X, ... processing malformed GIF images and can be exploited via e.g. Safari ...
(comp.sys.mac.system)
Re: Starting a Pen-Testing Career
... How else would they be able to provide such a report in isolation - ... and making their business plans work to worry so much about security. ... they hire a pen-tester or ethical hacker to tell them the things ... informed as to how the vulnerabilities exisit, how they can be exploited and ...
(alt.computer.security)
Re: SNMP Vulnerability Hype
... These vulnerabilities are new, and very serious. ... the problem and validate the attention that the report received. ... the gene pool of SNMP implementations is pathetic. ... The CERT/CC advisory has a pointer to the original report from the ...
(comp.security.unix)