Friday, March 06, 2015

Hillaryous email server

With a specially crafted request, a remote attacker can gain access to arbitrary files.
99% BAD HARDWARE WEEK: Vulnerability disclosure time :2014-11-28. Who could steal state owned files since then ? Anyone. Even before, if found this weakness and crafted right stealing tools. However, who did know ever since for this her email site, searching even with say Google ? Hardly anyone, that is just the point. Below are some registration accents from her email site.
Updated Date: 04-mar-2015
Creation Date: 13-jan-2009
Expiration Date: 13-jan-2017

Update: Advice to Hillary: disable the RSA export ciphers when email Outlook mails to foreigners. Why ?
A server needs to support RSA key exchange export ciphers for an attack to be successful.
Date: 05-mar-2015. Oh by the way, FREAK affects Windows, iOS and Android

A vulnerability in the Secure Channel (Schannel) component of Microsoft Windows could allow an unauthenticated, remote attacker to bypass security restrictions and access sensitive information from a targeted system. The vulnerability is due to an unspecified issue in the Transport Layer Security (TLS) state machine in Schannel used by an affected system. An unauthenticated, remote attacker who could perform a man-in-the-middle attack could exploit this vulnerability to decrypt SSL/TLS communication and access sensitive information, which could be used to conduct further attacks.

Comments: Post a Comment

<< Home

This page is powered by Blogger. Isn't yours?