Bugtraq mailing list archives

Re: RFP2K04: Mining BlackICE with RFPickAxe

From: rfp () WIRETRIP NET (rain forest puppy)
Date: Fri, 19 May 2000 13:16:23 -0500

No version of the NFR windows client has ever been in any way vulnerable
to any form or variation of the exploit discussed in this advisory.

The NFR windows client does not store any information in a Microsoft
.mdb file nor does it use Microsoft Access or Jet in any way.


I apologize, I have reviewed tons of IDS consoles, and I was working from
memory.  I will make a public note indicating NFR does not use .mdb.

Thanks for dropping me a note,
- rfp

Current thread:

AUX Security Advisory on Be/OS 5.0 (DoS), (continued)
- - - AUX Security Advisory on Be/OS 5.0 (DoS) visi0n (May 17)
    - Re: RFP2K04: Mining BlackICE with RFPickAxe Andrew Lambeth (May 19)
    - Remote Dos attack against Intel express 8100 router Dimuthu Parussalla (May 18)
    - RFP2K05: NetProwler vs. RFProwler rain forest puppy (May 19)
    - Key Generation Security Flaw in PGP 5.0 gec () ACM ORG (May 23)
    - Filesystem vulnerability in AIX salme () US IBM COM (May 23)
    - Re: RFP2K05: NetProwler vs. RFProwler Pedro Quintanilha (May 23)
    - Security Vulnerability in Qpopper 2.53 (Upgrade to 3.0.2) Qpopper Support (May 23)
    - Remote xploit for MDBMS |[TDP]| (May 24)
    - HP Web JetAdmin Version 6.0 Remote DoS attack Vulnerability Ussr Labs (May 24)
    - Re: RFP2K04: Mining BlackICE with RFPickAxe rain forest puppy (May 19)
    - revised patches for kerberos vulnerability Tom Yu (May 19)
    - Microsoft Security Bulletin (MS00-029) Microsoft Product Security (May 19)
    - BindView Security Advisory: jolt2 - Remote DoS against NT, W2K, 9x BindView Security Advisory (May 19)
    - Bugtraq Stats for the last 3 years available now. Alfred Huger (May 17)
  - KNapster Vulnerability Compromises User-readable Files Tom Daniels (May 10)
  - Gnapster Vulnerability Compromises User-readable Files Jim Early (May 10)
  - Possible symlink problems with Netscape 4.73 foo (May 10)
  - SSH Authentication Vulnerability John P. McNeely (May 10)
    - Re: [cert] SSH Authentication Vulnerability Ignacio Kadel-Garcia (May 11)
  - Black Watch Labs Vulnerability Alert Black Watch Labs (May 10)

(Thread continues...)