Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Full-Disclosure] And you're proud of this Mike Evanchick?

from [Todd Towles] Network Security [Permanent Link]
Subject: RE: [Full-Disclosure] And you're proud of this Mike Evanchick?
Date: Thu, 30 Dec 2004 08:38:51 -0600 
Umm..and you were the one giving cheers to Norton. Of course AV can be
fooled..and of course a patch from microsoft is the only true way to fix
the problem. 
 
She was attacking you for giving Cheers to Norton. I didn't release the
POC, you did. I am happy Norton is detecting it. If you want to change
your words right in the middle of the sentence, I really don't care.
 
By attacking me on a personal level, you have proven to me..to be
unprofessional at best.


________________________________

        From: Michael Evanchik [mailto:Mike@MichaelEvanchik.com] 
        Sent: Wednesday, December 29, 2004 5:03 PM
        To: Todd Towles; Elle Chicka; full-disclosure@lists.netsys.com
        Subject: Re: [Full-Disclosure] And you're proud of this Mike
Evanchick?
        
        
        Todd,
         
        Listen, you are so wrong i cant belive you even have the guts to
post this.  How stupid can you be?  Norton or any AVP can easily be
fooled.  The active x object "ca"+n b"+ +e crea" +ted" like this. code
changed around , or even different local code can be used and tada AVP
is fooled.  Only a true patch from microsoft or disable the help control
in the registry is going to stop this.  Her concern is wise.  
         
        Mike
        www.michaelevanchik.com
         

                ----- Original Message ----- 
                From: Todd Towles <mailto:toddtowles@brookshires.com>  
                To: Elle Chicka <mailto:c1b3r_chick@yahoo.com>  ;
full-disclosure@lists.netsys.com 
                Sent: Wednesday, December 29, 2004 9:36 AM
                Subject: RE: [Full-Disclosure] And you're proud of this
Mike Evanchick?

                Well, if you have Norton, it couldn't wreak havoc...now
could it? Most of the AV compaines are now detecting the exploit. This
detection response is much faster than most of the other exploits which
are wreaking havoc on your network, so it would sound.
                 
                Nice work to Norton.


________________________________

                        From: full-disclosure-bounces@lists.netsys.com
[mailto:full-disclosure-bounces@lists.netsys.com] On Behalf Of Elle
Chicka
                        Sent: Monday, December 27, 2004 11:16 PM
                        To: full-disclosure@lists.netsys.com
                        Subject: [Full-Disclosure] And you're proud of
this Mike Evanchick?
                        
                        
                        You so proudly posted this:
                        ------------------------
        
http://securityresponse.symantec.com/avcenter/venc/data/trojan.phel.a.ht
ml
<https://mail.microsoft.com/exchweb/bin/redir.asp?URL=http://securityres
ponse.symantec.com/avcenter/venc/data/trojan.phel.a.html> 
                        
                        mike
                        
                        www.michaelevanchik.com
                         
                        ------------------------
                        Obviously you are just tickled to see that the
kiddies were able to so quickly turn your point/click sploit code into a
virus to wreak havoc on my network.
                        
                        Thanks a lot for helping to make all of us a
little less secure over the holiday's.
                         

        
__________________________________________________
                        Do You Yahoo!?
                        Tired of spam? Yahoo! Mail has the best spam
protection around 
                        http://mail.yahoo.com 


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-Disclosure] [ GLSA 200412-27 ] PHProjekt: Remote code execution vulnerability, Thierry Carrez
Next by Date:  [Full-Disclosure] Information System Security Assessment Framework (ISSAF) Draft 0.1, admoore@phreaker.net
Previous by Thread:  Re: [Full-Disclosure] And you're proud of this Mike Evanchick?, Michael Reilly
Next by Thread:  RE: [Full-Disclosure] And you're proud of this Mike Evanchick?, xyberpix
Indexes:  [Date] [Thread] [Top] [All Lists]