Prev-20 Home Next-20 1 msg LifeType 1.2.8 1 msg Maian Uploader v4.0 XSS Vulnerabilities Microsot DID DISCLOSE potential Backdoor \ J. Oquendo (5 May 2008) . \ Ken Schaefer (6 May 2008) . . \ J. Oquendo (7 May 2008) . \ Ken Schaefer (7 May 2008) . \ J. Oquendo (7 May 2008) 1 msg Maian Music v1.1 Multiple Vulnerabilities (Xss/... 1 msg Multiple vulnerabilities in WebMod 0.48 1 msg Maian Links v3.1 XSS Vulnerabilities 1 msg Maian Weblog v4.0 XSS Vulnerabilities 1 msg Maian Recipe v1.2 Xss Vulnerabilities 1 msg Maian Support v1.3 Xss Vulnerabilities 1 msg Maian Greeting v2.1 Multiple Vulnerabilities (X... 1 msg Maian Guestbook v3.2 XSS Vulnerabilities 1 msg Maian Search v1.1 Multiple Vulnerabilities (XSS... 1 msg Maian Cart v1.1 XSS Vulnerabilities 2 msg Maian Gallery v2.0 XSS Vulnerability 3 msg Photos and Presentation Materials from HITBSecC... 3 msg SiteXS CMS Remote File Upload Vulnerability 1 msg [TOOL] SSL Capable NetCat (and more) 1 msg Fixed: LiveCart SQL injection vulnerability fix... 1 msg blur6ex-0.3.462 LOCAL FILE INCLUSION Vulnerbility 2 msg rPSA-2008-0157-1 kernel Prev-20 Home Next-20

Prev-Msg Prev-Thread Bugtraq May-2008 Next-Thread Next-Msg Subject: Re: Microsot DID DISCLOSE potential Backdoor Group: Bugtraq From: J. Oquendo Date: 7 May 2008 On Wed, 07 May 2008, Ken Schaefer wrote: > What I don't see is any proof, in your article, that information from an installation of the Malicious Software Removal Tool was passed onto someone else in the government, without any other consent from the user and without any legal order compelling Microsoft. > > Cheers > Ken Proof? Are you kidding... Proof is in Microsoft's own words read the article: http://www.pcworld.com/businesscenter/article/145257/microsoft_botnethunting_too l_helps_bust_hackers.html Botnet fighters have another tool in their arsenal, thanks to Microsoft. / COPIED FROM ARTICLE The software vendor is giving law enforcers access to a special tool that keeps tabs on botnets, using data compiled from the 450 million computer users who have installed the Malicious Software Removal tool that ships with Windows. / END COPY AND PASTE Note the words "using data compiled from the 450 million computer users who have installed the Malicious Software Removal tool that ships with Windows. NOTE THE TERM SHIPS WITH WINDOWS. This figure probably doesn't include machines who've installed it via an update. Also note: (FACT) Your machine reports by DEFAULT until you turn it off. You don't have the chance to agree or disagree to provide logging information which IS BEING USED by law enforcement. In fact... YOU WERE NEVER TOLD. -- =+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+ J. Oquendo SGFA #579 (FW+VPN v4.1) SGFE #574 (FW+VPN v4.1) wget -qO - www.infiltrated.net/sig|perl http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x3AC173DB Prev-Msg Prev-Thread Bugtraq May-2008 Next-Thread Next-Msg

© 2004-2008 readlist.com