Re: [Full-disclosure] FrSIRT False Alarm

[Ill will <xillwillx@xxxxxxxxx>]

On 8/20/05, Paul <pvnick@xxxxxxxxx> wrote:
> Not to mention this is hardly even assembly. This is like really ghetto
> assembly. In REAL assembly, there would be no ".if" statements. It's all cmp
> blah blah, jz, jnz, etc. Lot's more work. Also, there is no such thing as
> .invoke MessageBox. Give me a break. In real assembly, that code would be
> about 5 times longer.
> 
> Regards,
> Paul
> Greyhats Security
> http://greyhatsecurity.org
> 

Paul is just in a pissing contest because i let the cat out of bag
with his firefox sploit a few months back.. also is now mad because
microsoft is closely watching this list and i know about his remote
activeX killbit bypass that he has 'under his belt' as he claims (yes
i know  how to start an object other then in <object tags ) .Sorry to
see all your magic tricks fly out the window by me as you sell-out to
microsoft
as your website, http://greyhatsecurity.org ,claims
"Paul from Greyhats has become a whitehat. I will still refer to
myself as "Paul from Greyhats"; however, I will abide to the ethics of
a whitehat. Vendors are our friends, and we need to work with them to
protect the customers"
  it must be nice when people hand u known vulns in the past and now
im sure from working with microsoft they had known about this killbit
already and your a test monkey now

tell bill gates illwill sends his love.
http://illmob.org/paul.html

-- 
- illwill
http://illmob.org
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/