[VIM] Do world's famous companies take care of their security? (fwd)
security curmudgeon
jericho at attrition.org
Mon Jul 31 17:10:42 EDT 2006
: > I just don't see the point.
:
: I don't think we collectively have much idea of the scope of the
: problem, since VDB's don't track this. And "XYZ disclosure" practices
: don't really exist/apply in the site-specific world, so vendors are not
: necessarily pressured to address the issues. Such a beast might be
: useful for awareness, assuming it registers with the right people.
Not scientific by any means, but I have the start of an idea on the scope
=) I think I have mentioned this before, maybe to some of you off list.
I keep a really primitive archive of site specific issues. It's nothing
more than saving the disclosure e-mail to its own file. Since I don't have
time to really track these, I do it really fast, often append random
numbers to the file name to avoid overwriting or appending to a previous
disclosure, etc. The file times aren't the best indication of disclosure
since i've copied these files around, moved them, edited/appended, etc.
But, it may give us an idea of just how many we've seen cross the lists.
Sorry for the length of this, but it goes to the point =)
-rw-r--r-- 1 jericho root 194 Nov 12 2004 00-more
-rw------- 1 jericho users 1380 Dec 8 2003 anglfire.bug
-rw------- 1 jericho users 2133 Jul 24 2003 anonymiser.com-reveal_ip.bug
-rw------- 1 jericho users 1608 Apr 1 2002 anonymizer-com-bypass.bug
-rw------- 1 jericho users 2148 Oct 4 2002 aol-juno.bug
-rw------- 1 jericho root 3006 Oct 20 2004 aol-webmail-xss.bug
-rw------- 1 jericho root 5480 Sep 24 2004 aol.com-groups-multiple.bug
-rw------- 1 jericho root 2407 Sep 27 2004 aol.com-groups.bug
-rw-r--r-- 1 jericho root 1559 Sep 27 2004 aol.com-groups2.bug
-rw------- 1 jericho users 777 Oct 4 2002 aol40-1.bug
-rw------- 1 jericho users 4035 Jul 23 2003 auth-net-merch.bug
-rw------- 1 jericho users 4619 Oct 4 2002 bellsth1.bug
-rw------- 1 jericho users 318 Dec 21 2001 caramail.com-general.jsp-css.bug
-rw------- 1 jericho users 908 Nov 19 2004 cashncarrion.co.uk-xss.bug
-rw------- 1 jericho users 2296 Jul 23 2003 charterone.com-1.bug
-rw------- 1 jericho users 4358 Oct 4 2002 cis-logn.txt
-rw------- 1 jericho root 5176 Aug 25 2004 comcast_net-code.bug
-rw------- 1 jericho root 4983 Aug 25 2004 defensivethinking-com-validation.bug
-rw------- 1 jericho users 4499 Oct 4 2002 ecash-nf.bug
-rw------- 1 jericho root 1053 Sep 24 2004 gmail-login-proxy.bug
-rw------- 1 jericho root 1813 Aug 25 2004 gmail_com-info_disc.bug
-rw------- 1 jericho root 2089 Oct 20 2004 google.com-script_insert.bug
-rw------- 1 jericho users 3614 Jul 23 2003 grc-probe.bug
-rw-r--r-- 1 jericho root 157 Feb 26 2005 hotmail-cve-1
-rw-r--r-- 1 jericho root 224 Feb 26 2005 hotmail-cve-2
-rw-r--r-- 1 jericho root 185 Feb 26 2005 hotmail-cve-3
-rw------- 1 jericho users 7332 Oct 4 2002 hotmail1.bug
-rw------- 1 jericho users 2746 Oct 4 2002 hotmailj.bug
-rw------- 1 jericho users 1443 Oct 4 2002 internic.bug
-rw-r--r-- 1 jericho root 1843 Nov 21 2004 mcarecords.com-cookie.bug
-rw------- 1 jericho users 2279 Mar 24 2002 myownemail.com.txt
-rw------- 1 jericho users 3758 Jul 21 2003 myvoicestream.bug
-rw------- 1 jericho users 6105 Oct 14 2003 nasa-gov-css.bug
-rw------- 1 jericho root 2978 Oct 20 2004 netscape-webmail-xss.bug
-rw------- 1 jericho users 1952 Jan 5 2002 nick-com.bug
-rw-r--r-- 1 jericho root 223 Apr 19 2004 orkut-xss.bug
-rw------- 1 jericho root 22317 Feb 1 2004 orsm.net-1.txt
-rw------- 1 jericho users 1022 Mar 26 2002 secureinc-com.bug
-rw------- 1 jericho root 1865 Dec 8 2005 site-0x90.org-injection
-rw------- 1 jericho root 1554 Jul 31 08:47 site-1asphost.com
-rw------- 1 jericho root 1324 Dec 8 2005 site-30gigs-email.bug
-rw------- 1 jericho root 2100 Jul 31 08:47 site-43things.com-xss
-rw------- 1 jericho root 2018 Jul 31 08:47 site-about.com-xss
-rw------- 1 jericho root 4320 Feb 15 22:36 site-aim.com-multiple_xss
-rw------- 1 jericho root 649 Feb 15 22:36 site-akkamai-remote-backup
-rw------- 1 jericho root 820 Jul 31 08:47 site-alexadex.com-xss
-rw------- 1 jericho root 962 Jul 31 08:47 site-amazon-crlf-xss
-rw------- 1 jericho root 1625 Apr 16 2005 site-americangreetings.com
-rw------- 1 jericho root 7924 Jul 31 08:47 site-amex.com-xss
-rw------- 1 jericho root 1573 Apr 16 2005 site-amihotornot.com.au-mod
-rw------- 1 jericho root 329 Jul 31 08:47 site-animesuki-doc.php-xss
-rw------- 1 jericho root 3236 Feb 15 22:36 site-aol.com-multiple_xss
-rw------- 1 jericho root 5065 Apr 16 2005 site-aol_online_password_reset
-rw------- 1 jericho root 5716 Apr 16 2005 site-aol_redirs
-rw------- 1 jericho root 3365 Jul 31 08:47 site-apnaspace.com-multiple
-rw------- 1 jericho root 2050 Jul 31 08:47 site-asianxo.com-xss
-rw------- 1 jericho root 1493 Oct 26 2004 site-autoscout24.de-xss.bug
-rw------- 1 jericho root 806 Jul 31 08:47 site-b3ta.com-xss
-rw------- 1 jericho root 658 Dec 8 2005 site-bahnshop.de-multiple
-rw------- 1 jericho root 857 Jul 31 08:47 site-beoped.com-xss
-rw------- 1 jericho root 1454 Jul 31 08:47 site-biblenet.net-xss
-rw------- 1 jericho root 7363 Jul 31 08:47 site-bingbox.com-multiple
-rw------- 1 jericho root 1684 Dec 8 2005 site-biosmagazine.co.uk-xss
-rw------- 1 jericho root 2116 Apr 16 2005 site-birthday.yahoo.com
-rw------- 1 jericho root 5703 Jul 31 08:47 site-blackplanet.com-xss
-rw------- 1 jericho root 2143 Jul 31 08:47 site-blacksingles.com-multiple
-rw------- 1 jericho root 1839 Apr 16 2005 site-blogger-xss
-rw------- 1 jericho root 1724 Feb 15 22:36 site-blogger.com-http_rs
-rw------- 1 jericho root 1917 Jul 31 08:47 site-blogspot.com-xss
-rw------- 1 jericho root 1200 Jul 31 08:47 site-boardhost.com-xss
-rw------- 1 jericho root 1090 Jul 31 08:47 site-borussia.de-xss
-rw------- 1 jericho root 2790 Nov 11 2004 site-callwave.com-caller_id.bug
-rw------- 1 jericho root 6403 Aug 4 2005 site-capitalone-phishing
-rw------- 1 jericho root 2098 Jul 31 08:47 site-carspace.com-xss
-rw------- 1 jericho root 2579 Dec 8 2005 site-chamberofgold-ratingbox-xss
-rw------- 1 jericho root 1280 Jul 31 08:47 site-chatizens.com-xss
-rw------- 1 jericho root 910 Jul 31 08:47 site-christian-heffner.de
-rw------- 1 jericho root 1384 Dec 8 2005 site-citibank.co.uk-xss
-rw------- 1 jericho root 1407 Jul 31 08:47 site-cline-comm
-rw------- 1 jericho root 72 Aug 4 2005 site-compozit-fr-sql-injection
-rw------- 1 jericho root 2872 Feb 15 22:36 site-consti.de-xss
-rw------- 1 jericho root 6944 Apr 16 2005 site-corp.aol.com-multiple
-rw------- 1 jericho root 1356 Jul 31 08:47 site-cybersocieties.com-xss
-rw------- 1 jericho root 848 Jul 31 08:47 site-danawa.com-xss
-rw------- 1 jericho root 1041 Feb 15 22:36 site-darkstarlings.com-xss
-rw------- 1 jericho root 839 Jul 31 08:47 site-daum.net-search-xss
-rw------- 1 jericho root 1226 Jul 31 08:47 site-dealgates.com-xss
-rw------- 1 jericho root 644 Aug 4 2005 site-deutsche-bank-xss
-rw------- 1 jericho root 773 Jul 31 08:47 site-diaryland.com-xss
-rw------- 1 jericho root 1392 Jul 31 08:47 site-digg.com
-rw------- 1 jericho root 2224 Jul 31 08:47 site-distributed.net-ogr-spoof
-rw------- 1 jericho root 1554 Jul 31 08:47 site-domaindlx.com
-rw------- 1 jericho root 566 Jul 31 08:47 site-domaintools.com-unspecified
-rw------- 1 jericho root 855 Jul 31 08:47 site-dreamwiz-xss
-rw------- 1 jericho root 614 Jul 31 08:47 site-dvdwolf.com-multiple
-rw------- 1 jericho root 2710 Apr 16 2005 site-easydns.net-sql_injection
-rw------- 1 jericho root 4139 Feb 15 22:36 site-eazycms_sql
-rw------- 1 jericho root 8787 Aug 4 2005 site-ebay-auction-session
-rw------- 1 jericho root 1810 Jul 31 08:47 site-ebay-js_inject
-rw------- 1 jericho root 1115 Jul 31 08:47 site-ebay.com-xss-928734
-rw------- 1 jericho root 755 Apr 16 2005 site-echalk-search-xss.bug
-rw------- 1 jericho root 2057 Jul 31 08:47 site-egold
-rw------- 1 jericho root 1099 Jul 31 08:47 site-emllabs.com-xss
-rw------- 1 jericho root 1042 Jul 31 08:47 site-emopunk.de-xss
-rw------- 1 jericho root 3932 Jul 31 08:47 site-everyone.net-xss
-rw------- 1 jericho root 2359 Jul 31 08:47 site-facerave.com-xss
-rw------- 1 jericho root 932 Jul 31 08:47 site-facetherating.com-xss
-rw------- 1 jericho root 852 Jul 31 08:47 site-fapomatic.com-xss
-rw------- 1 jericho root 506 Jul 31 08:47 site-filelodge.bolt.com-xss
-rw------- 1 jericho root 6400 Jul 31 08:47 site-findnot.com-dns
-rw------- 1 jericho root 8243 Jul 31 08:47 site-findnot.com-ip_disclosure
-rw------- 1 jericho root 547 Jul 31 08:47 site-flork.com
-rw------- 1 jericho root 2766 Dec 8 2005 site-fotolog.net-xss
-rw------- 1 jericho root 2715 Apr 16 2005 site-fotolog.net-xss1.bug
-rw------- 1 jericho root 1047 Feb 15 22:36 site-foundstone-disclosure
-rw------- 1 jericho root 749 Feb 15 22:36 site-foundstone-xss
-rw------- 1 jericho root 2035 Jul 31 08:47 site-freecodesource.com-xss
-rw------- 1 jericho root 2080 Apr 16 2005 site-froogle-xss
-rw------- 1 jericho root 1489 Jul 31 08:47 site-gameplay.co.uk-xss
-rw------- 1 jericho root 341 Jul 31 08:47 site-gardenweb-search-xss
-rw------- 1 jericho root 537 Jul 31 08:47 site-gawab.com-register.php-xss
-rw------- 1 jericho root 1493 Oct 26 2004 site-giga.de-xss.bug
-rw------- 1 jericho root 1735 Jul 31 08:47 site-gmail-dos
-rw------- 1 jericho root 2446 Apr 16 2005 site-gmail-esmtp-bo
-rw------- 1 jericho root 553 Apr 16 2005 site-gmail-message-interception
-rw------- 1 jericho root 958 Nov 11 2004 site-gmail.com-xss.bug
-rw------- 1 jericho users 1745 Nov 19 2004 site-gmail.com-xss2.bug
-rw------- 1 jericho root 1070 Oct 26 2004 site-gmail.google.com-contact_list.bug
-rw------- 1 jericho root 2900 Dec 8 2005 site-gmx.net-xss
-rw------- 1 jericho root 8663 Aug 4 2005 site-google-ads
-rw------- 1 jericho root 2668 Aug 4 2005 site-google-adsense-invite-friend
-rw------- 1 jericho root 1403 Jul 31 08:47 site-google-groups-xss_cd
-rw------- 1 jericho root 1654 Dec 8 2005 site-google-pendmsg-xss
-rw------- 1 jericho root 4953 Jul 31 08:47 site-google-search_xss8239427
-rw------- 1 jericho root 3666 Jul 31 08:47 site-google.com-reader
-rw------- 1 jericho root 4759 Dec 8 2005 site-google.com-sql
-rw------- 1 jericho root 4728 Dec 27 2005 site-google.com-url-xss
-rw------- 1 jericho root 1943 Feb 15 22:36 site-google_blogger-csrf
-rw------- 1 jericho root 2611 Apr 16 2005 site-google_groups-injectino
-rw------- 1 jericho root 3783 Jul 31 08:47 site-google_reader
-rw------- 1 jericho root 1642 Jul 31 08:47 site-greatdomains.com-xss
-rw------- 1 jericho root 1158 Jul 31 08:47 site-hackernetwork-xss
-rw------- 1 jericho root 939 Jul 31 08:47 site-hackernetwork.com-xss
-rw------- 1 jericho root 799 Jul 31 08:47 site-hanaro-search-xss
-rw------- 1 jericho root 8447 Apr 16 2005 site-help.msn.com-xss
-rw------- 1 jericho root 2754 Jul 31 08:47 site-hi5.com-xss
-rw------- 1 jericho root 678 Jul 31 08:47 site-hotbot-xss-2342
-rw------- 1 jericho root 1240 Jul 31 08:47 site-hotbot.com-xss
-rw------- 1 jericho root 1807 Apr 16 2005 site-hotforum.nl-xss
-rw------- 1 jericho root 6721 Aug 4 2005 site-hotmail-av-bypass
-rw------- 1 jericho root 2571 Jul 31 08:47 site-hotmail-bgcolor-xss
-rw------- 1 jericho root 7322 Jul 31 08:47 site-hotmail-cookie
-rw------- 1 jericho root 2805 Apr 16 2005 site-hotmail-xss1.bug
-rw------- 1 jericho root 2800 Apr 16 2005 site-hotmail-xss2.bug
-rw------- 1 jericho root 2901 Jul 31 08:47 site-hotscripts.com-xss
-rw------- 1 jericho root 1394 Jul 31 08:47 site-housecarers.com-xss
-rw------- 1 jericho root 577 Jul 31 08:47 site-icq.com-atoz.php-xss
-rw------- 1 jericho root 428 Jul 31 08:47 site-icq.com-multiple-xss
-rw------- 1 jericho root 3373 Feb 15 22:36 site-icq.com-search_result.php-xss
-rw------- 1 jericho root 259 Jul 31 08:47 site-icq.com-thanks.php-xss
-rw------- 1 jericho root 2236 Jul 31 08:47 site-incredibleindia.org-sql
-rw------- 1 jericho root 5080 Apr 16 2005 site-indian_mail-multiple
-rw------- 1 jericho root 2926 Dec 8 2005 site-indiatimes-xss
-rw------- 1 jericho root 7033 Dec 8 2005 site-itan
-rw------- 1 jericho root 2571 Apr 16 2005 site-itunes-store
-rw------- 1 jericho root 2220 Dec 8 2005 site-jg-tc.com-xss
-rw------- 1 jericho root 2839 Oct 26 2004 site-journals-aol-com-blogid_info_disclosure.bug
-rw------- 1 jericho root 2373 Apr 16 2005 site-kayako-support.bug
-rw------- 1 jericho root 669 Jul 31 08:47 site-larkinweb.com-xss
-rw------- 1 jericho root 130 Feb 15 22:36 site-lemoon
-rw------- 1 jericho root 3165 Jul 31 08:47 site-libero.it-xss
-rw------- 1 jericho root 526 Jul 31 08:47 site-listbox.com-unspecified
-rw------- 1 jericho root 3819 Dec 27 2005 site-livejournal-xss23948
-rw------- 1 jericho root 1335 Nov 11 2004 site-local.google.com-xss.bug
-rw------- 1 jericho root 2313 Aug 4 2005 site-login.passport.net-phising
-rw------- 1 jericho root 900 Dec 8 2005 site-login.yahoo.com-redirect
-rw------- 1 jericho root 13138 Apr 16 2005 site-looknmeet
-rw------- 1 jericho root 993 Dec 8 2005 site-lycos-ssl
-rw------- 1 jericho root 1208 Jul 31 08:47 site-lycos.com-xss
-rw------- 1 jericho root 1246 Jul 31 08:47 site-macworld.com-xss
-rw------- 1 jericho root 2301 Jul 31 08:47 site-mafia-games
-rw------- 1 jericho root 2079 Feb 15 22:36 site-mahindrabt.com-xss
-rw------- 1 jericho root 1644 Jul 31 08:47 site-mail2world_and_icqmail
-rw------- 1 jericho root 5066 Feb 15 22:36 site-many_translation-xss
-rw------- 1 jericho root 1055 Aug 4 2005 site-mcdonalds-xss
-rw------- 1 jericho root 1581 Jul 31 08:47 site-meefo.com-xss
-rw------- 1 jericho root 962 Jul 31 08:47 site-microsoft-3248923
-rw------- 1 jericho root 908 Feb 15 22:36 site-moblog.co.uk-m3log
-rw------- 1 jericho root 4538 Jul 31 08:47 site-movilnet-captha
-rw------- 1 jericho root 1237 Jul 31 08:47 site-mp3.com-xss
-rw------- 1 jericho root 13297 Dec 8 2005 site-multiple
-rw------- 1 jericho root 1133 Aug 4 2005 site-multiple-huge_site-xss
-rw------- 1 jericho root 1238 Apr 16 2005 site-multiple-xss
-rw------- 1 jericho root 3976 Aug 4 2005 site-multiple-xss2394
-rw------- 1 jericho root 4502 Apr 16 2005 site-multiple_il_domains
-rw------- 1 jericho root 2383 Apr 16 2005 site-musicmatch-xss
-rw------- 1 jericho root 1095 Apr 16 2005 site-my-forum.org
-rw------- 1 jericho root 2179 Oct 26 2004 site-my-yahoo-search-spam.bug
-rw------- 1 jericho root 874 Jul 31 08:47 site-my6d.com-xss
-rw------- 1 jericho root 1349 Jul 31 08:47 site-mydeardiary.com-xss
-rw------- 1 jericho root 9021 Jul 31 08:47 site-myspace-bulletin_disclosure
-rw------- 1 jericho root 10466 Jul 31 08:47 site-myspace-forum_post
-rw------- 1 jericho root 858 Jul 31 08:47 site-myspace-id_box
-rw------- 1 jericho root 7725 Dec 8 2005 site-myspace-injection
-rw------- 1 jericho root 1144 Jul 31 08:47 site-myspace-td-phising
-rw------- 1 jericho root 12798 Jul 31 08:47 site-myspace-xss_intricate
-rw------- 1 jericho root 4759 Dec 8 2005 site-myspace.com
-rw------- 1 jericho root 428 Jul 31 08:47 site-mytruehood.com-xss
-rw------- 1 jericho root 503 Jul 31 08:47 site-myvideo.de-xss
-rw------- 1 jericho root 1606 Jul 31 08:47 site-myyearbook.com-xss
-rw------- 1 jericho root 803 Dec 8 2005 site-names.co.uk-xss
-rw------- 1 jericho root 9636 Jul 31 08:47 site-neckermann_welten
-rw------- 1 jericho root 4239 Dec 8 2005 site-netbank.commbank.com.au-xss
-rw------- 1 jericho root 1281 Aug 4 2005 site-netflix-phising
-rw------- 1 jericho root 1853 Jul 31 08:47 site-netscape.com-xss
-rw------- 1 jericho root 490 Jul 31 08:47 site-newscientist.com-xss
-rw------- 1 jericho root 359 Dec 27 2005 site-nist.gov-xss
-rw------- 1 jericho root 825 Dec 8 2005 site-nordstroms.com
-rw------- 1 jericho root 1689 Jul 31 08:47 site-nowtalking.com-xss
-rw------- 1 jericho root 2583 Feb 15 22:36 site-nsa-multiple
-rw------- 1 jericho root 810 Aug 4 2005 site-nsa.gov-xss
-rw------- 1 jericho root 3680 Jul 31 08:47 site-onlinenode.com-xss
-rw------- 1 jericho root 3039 Jul 31 08:47 site-opengaia.com-xss
-rw------- 1 jericho root 1387 Jul 31 08:47 site-opengear.com-xss
-rw------- 1 jericho root 742 Jul 31 08:47 site-openoffice.org-redirect
-rw------- 1 jericho root 2606 Jul 31 08:47 site-orkut.com-xss2893742
-rw------- 1 jericho root 1274 Jul 31 08:47 site-palm.com-xss
-rw------- 1 jericho root 608 Jul 31 08:47 site-patronet-xss
-rw------- 1 jericho root 5163 Apr 16 2005 site-paymaxx
-rw------- 1 jericho root 2080 Jul 31 08:47 site-paypal-phishing
-rw------- 1 jericho root 3014 Jul 31 08:47 site-paypal-secureserver
-rw------- 1 jericho root 932 Oct 26 2004 site-paypal-shoppingcart.bug
-rw------- 1 jericho root 6452 Apr 16 2005 site-paypal-webscr
-rw------- 1 jericho root 2924 Aug 4 2005 site-paypal_buttons
-rw------- 1 jericho root 1493 Oct 26 2004 site-pcwelt.de-xss.bug
-rw------- 1 jericho root 6467 Dec 8 2005 site-persianblog.com-sql
-rw------- 1 jericho root 880 Apr 16 2005 site-phrack.org
-rw------- 1 jericho root 75 Jul 31 08:47 site-phxcontacts
-rw------- 1 jericho root 532 Jul 31 08:47 site-prdownloads.sourceforge.net-xss
-rw------- 1 jericho root 382 Jul 31 08:47 site-race-event-manager.de-xss
-rw------- 1 jericho root 1503 Jul 31 08:47 site-raindance-xss
-rw------- 1 jericho root 1038 Feb 15 22:36 site-rapidshare.de-xss
-rw------- 1 jericho root 1790 Jul 31 08:47 site-ratemylook.co.uk-xss
-rw------- 1 jericho root 984 Jul 31 08:47 site-ratescene.co.uk-xss
-rw------- 1 jericho root 934 Feb 15 22:36 site-recruitment-agency-software
-rw------- 1 jericho root 7924 Jul 31 08:47 site-reviews.ebay.com-xss
-rw------- 1 jericho root 1692 Dec 8 2005 site-rsasecurity.com-xss
-rw------- 1 jericho root 1272 Apr 16 2005 site-sago_networks-cleartext
-rw------- 1 jericho root 4054 Aug 4 2005 site-scottrade.com
-rw------- 1 jericho root 4666 Apr 16 2005 site-scottrade1
-rw------- 1 jericho root 5396 Apr 16 2005 site-scottsave.com-history
-rw------- 1 jericho root 523 Jul 31 08:47 site-shabablek-xss
-rw------- 1 jericho root 907 Dec 8 2005 site-shop2.o2online.de-xss
-rw------- 1 jericho root 1556 Jul 31 08:47 site-soe-forums
-rw------- 1 jericho root 4289 Feb 15 22:36 site-sony-myive
-rw------- 1 jericho root 1896 Apr 16 2005 site-sportswear-sites_multiple
-rw------- 1 jericho root 3184 Jul 31 08:47 site-stargazoer.org-xss
-rw------- 1 jericho root 11785 Aug 4 2005 site-statcounter.com-injection
-rw------- 1 jericho root 1493 Oct 26 2004 site-suche.aol.de-xss.bug
-rw------- 1 jericho root 2296 Dec 8 2005 site-superclick-popup-xss
-rw------- 1 jericho root 2737 Feb 15 22:36 site-superonline.com-xss
-rw------- 1 jericho root 1860 Aug 4 2005 site-support.msn.com-phishing
-rw------- 1 jericho root 1662 Jul 31 08:47 site-swapitshop.com-browse.cgi-xss
-rw------- 1 jericho root 688 Dec 8 2005 site-t-online.de-xss
-rw------- 1 jericho root 843 Dec 8 2005 site-tanfoglio.it-popup
-rw------- 1 jericho root 1608 Jul 31 08:47 site-technorati.com-xss
-rw------- 1 jericho root 617 Jul 31 08:47 site-tempinbox.com-xss
-rw------- 1 jericho root 1176 Apr 16 2005 site-thc.org
-rw------- 1 jericho root 703 Jul 31 08:47 site-thestar.com-xss
-rw------- 1 jericho root 508 Jul 31 08:47 site-timberland-xss
-rw------- 1 jericho root 1637 Jul 31 08:47 site-titus.de-xss
-rw------- 1 jericho root 2270 Jul 31 08:47 site-tlen.pl-xss
-rw------- 1 jericho root 2176 Aug 4 2005 site-tmobile-email_disclosure
-rw------- 1 jericho root 1338 Dec 8 2005 site-trendmicro.com-pagingreport.asp-xss
-rw------- 1 jericho root 1587 Nov 11 2004 site-truste.org-invalidate.php-xss
-rw------- 1 jericho root 3250 Apr 16 2005 site-u_o_phoenix-outlook
-rw------- 1 jericho root 3253 Nov 11 2004 site-ureach.com-xss.bug
-rw------- 1 jericho root 465 Jul 31 08:47 site-vampirefreaks.com-xss
-rw------- 1 jericho root 2067 Jul 31 08:47 site-vbulletin.com-xss
-rw------- 1 jericho root 2380 Dec 8 2005 site-verizon-wireless
-rw------- 1 jericho root 316 Jul 31 08:47 site-vgm_forbin
-rw------- 1 jericho root 2612 Jul 31 08:47 site-virtualtourist.com-xss
-rw------- 1 jericho root 1289 Jul 31 08:47 site-vodafone.de-xss
-rw------- 1 jericho root 949 Jul 31 08:47 site-wanderlist.com-xss
-rw------- 1 jericho root 2492 Jul 31 08:47 site-webcrawler.com-xss
-rw------- 1 jericho root 372 Dec 8 2005 site-webistanbul-sql
-rw------- 1 jericho root 1712 Aug 4 2005 site-whatpulse.org-xss
-rw------- 1 jericho root 4468 Dec 8 2005 site-whois.sc-email
-rw------- 1 jericho root 1992 Jul 31 08:47 site-windowsitpro.com-xss
-rw------- 1 jericho root 100 Apr 16 2005 site-xanga
-rw------- 1 jericho root 2538 Aug 4 2005 site-yahoo-360-website
-rw------- 1 jericho root 2210 Apr 16 2005 site-yahoo-div-xss.bug
-rw------- 1 jericho root 910 Jul 31 08:47 site-yahoo-login.src
-rw------- 1 jericho root 2925 Dec 27 2005 site-yahoo-mail-filter-xss
-rw------- 1 jericho root 2777 Jul 31 08:47 site-yahoo-mail-xss.23498293
-rw------- 1 jericho root 1207 Jul 31 08:47 site-yahoo-mail-xss9823548273
-rw------- 1 jericho root 2502 Feb 15 22:36 site-yahoo-mail_filter-xss
-rw------- 1 jericho root 699 Jul 31 08:47 site-yahoo-webmail-1day
-rw------- 1 jericho root 1617 Oct 26 2004 site-yahoo.com-learn-spam.bug
-rw------- 1 jericho root 3460 Dec 8 2005 site-yahoo.com-multiple-xss
-rw------- 1 jericho root 3015 Dec 27 2005 site-yahoo.com-notepad-xss
-rw------- 1 jericho root 3516 Dec 8 2005 site-yahoo.com-rss_xss
-rw------- 1 jericho root 3069 Aug 4 2005 site-yahoo.com-userinfo_disc
-rw------- 1 jericho root 12226 Jul 31 08:47 site-yahoo.multiple
-rw------- 1 jericho root 1675 Jul 31 08:47 site-yahoo_webmail_xss
-rw------- 1 jericho root 2081 Jul 31 08:47 site-yourfacesucks.com-xss
-rw------- 1 jericho root 1273 Jul 31 08:47 site-yourfreeworld-xss
-rw------- 1 jericho root 1195 Jul 31 08:47 site-youtube.com-muliple
-rw------- 1 jericho root 1063 Jul 31 08:47 site-youtube.com-xss
-rw------- 1 jericho root 982 Aug 4 2005 site-zabasearch-xss
-rw-r--r-- 1 jericho root 182 Feb 26 2005 sun-cve1
-rw------- 1 jericho users 1201 Oct 14 2002 sun_com-java_engine_path_disclose.bug
-rw-r--r-- 1 jericho root 1255 Nov 16 2004 thefacebook.com-xss-1.bug
-rw-r--r-- 1 jericho root 760 Nov 16 2004 thefacebook.com-xss-2.bug
-rw------- 1 jericho root 1176 Aug 25 2004 typepad-com-xss.bug
-rw------- 1 jericho users 565 Mar 29 2002 yahoo-com-js.bug
-rw------- 1 jericho root 4777 Aug 25 2004 yahoo-com-mail-activex.bug
-rw------- 1 jericho root 2831 Sep 24 2004 yahoo-store.com-bug
More information about the VIM
mailing list