90954 2003-02-17  23:33  /16 rader/ nesumin <nesumin@softhome.net>
Importerad: 2003-02-17  23:33  av Brevbäraren
Extern mottagare: bugtraq@securityfocus.com
Mottagare: Bugtraq (import) <3532>
Kommentar till text 90152 av nesumin <nesumin@softhome.net>
Ärende: Re: Opera Username Buffer Overflow Vulnerability
------------------------------------------------------------
Hello.

I found the little mistake in my exploit source file, Sorry.
It is out of the Exploit routine. (about links of "Version.lib")
And I attached the fixed version of it.

--------

Now.
OperaSoftwareASA have not fixed this vulnerability, yet.


--------------------------------------------------
nesumin <nesumin@softhome.net>
(90954) /nesumin <nesumin@softhome.net>/------------
Bilaga (application/octet-stream) i text 90955
90955 2003-02-17  23:33  /23 rader/ nesumin <nesumin@softhome.net>
Bilagans filnamn: "030217_o6unexp.tgz"
Importerad: 2003-02-17  23:33  av Brevbäraren
Extern mottagare: bugtraq@securityfocus.com
Mottagare: Bugtraq (import) <3533>
Bilaga (text/plain) till text 90954
Ärende: Bilaga (030217_o6unexp.tgz) till: Re: Opera Username Buffer Overflow Vulnerability
------------------------------------------------------------
‹ˆQ>o6unexp.tarí;ksâH’óÕÑÿ!‡‰ñI¶âaðÏòÓìbã3ØÓsm!Caä+
cßtÿ÷ˬ*
I@ÛÝÓs{·Ši¬ªÊÊweeViÜòÜaO³ìð‡¿îÉëz¹\†€=õŠ¥B±P)JÅJ)_.`ß~E/þ!Kÿ~ä“ÛùÓÏÛ7ÀÿAwÆ<®|æ9æ”A}>3ºÌÛ™íZA~qÙm^5úhî#9uìzð›åŒÜ…Ï!®Ë^»{Î!ÊY}îæ–=‚|¾¤kP;˜ÙWدTäœóf÷bX{n°0=µ^
”I̎r¹Åb‘ui4;t§9•ÏltÏΌsbèúˇ™çÞ{æó
à]ÿ¬cËfLL.ğÀ{†ÀEh6œ2CÓf±•ÉNFÌ̺#6‚»g¸ê·öòåì
Žþ„ùFll9øhÚs¤?5Ÿ±kƜ¸by´<י2'XßïÀs4ò˜ïÃØs§ðìÎ=˜²©‹ZcÈüjôkÍæe&¦¿‚áŽ1'd
YíªWûա߀´ä΃Ù<L‚©=
•íW5B{pº
˜O¨õûÆyŸ~èWÍ.œwûP«_õè¿k÷ÐBMÖ)Ñã&øæt†fqû™»Óp†-çç6Yñβ­àyC
U*lcÂ=ø?|@µÍ\Ç·ÄX ¥ú2õÏí`U_¤‹ápîy°\d2óRwýwµóô„yšÕжëYÎê¬Ûl·ÚF“ 
º^Ì酜~¸B.ÊWПƒ©åæG–C¶¯FhxE]bvó)žÈ—¿ùî8˜¸S–uXpÊAèçÛè×êJ·°“{ûæí›\ŽþÁ'XƄ#Èf³­Ú?ìïµ.ð÷Òèã¯ã΢ÿ°IŠËãßlø@z´
G9
zvò°ùÙ)ÄPŒ¸ÃY{¡Þ“|AD‹5f£ñõ®8n
ùR¹¨.)[‹…éÓÊDǾ&àŽÑ§Ò'9åj”}E0zèO÷h7t¬™k9¸b7qǞ†ö|Ä@ÒñÑô§1>µ
âO‘ñ?%]tîK…ú²1ùÄF–›œ¦úlën¥=ñ>Õ¹2u<t;Õ75mÛòNìš^¶PÚÛçłpŒ½?÷
ápÝÈM‰ Y—¦Œ–YA
–Søþ¬3ØÓy†wn€kFƒhqfّmÃ~VÏò‡ûÙ²^9\
Aþ~vÁ%Ùҟ*£\iê¥D§[kvÚõËÚåï¨e) Tîz
ŽŠUôÃRcÉçáÆü‡YŠ±R6¯oøà&Æê-³§bc&ÉZ½ÕªT*ûú
X’9+…Ã=ùŒøú2õVé  7_¦^®TÚ/S/—
3I)Áûè]ä_`õ¹_3ö_`ÁŠÍÃrþ¬^Vx[|‰›QHá ôßpcEÜäôl˟d1z`GH«S«AÇ8ÿµÿéäQȟ˜í31çÁœ™žÙ—'éŒ&9#kgg4¸sá.å[Èã*G‚çR1Ü\øn«Õ3ú[[
rT:bPTâ4w
ª›B;q>œ£Ä®0‰ô4x!O–à㑚ЂàS¦x_du|ð¯a5¥ûWfÊ!•V»Ó1š¿5ÞÕ¸çbÏÇqw¼®u®:Ðù“ÿnqØý½w¦Ïx9ñÐc°/K¹¬óQîM«¹ëÛ7sL†îiCNLOìÐn«l¡öô'£Ž;Ð~“~ø[è­AoEúiâO=?¥þ4iÏ2¨ï€ÞŠ|+Ш®	”ÔhÕhŒÞpPQꄼD?Ô¤¾:½Õj«?­–@Éir¶øÛ>'Wùå͵´VÉÔëe½®ÅRœL‹“©½’LI \¥ô"™ƒHɜ #ÈQ
{l¨MxË«ØÄÖXŸ×yB<!—{Âmž¬Èir„“[FôF?eJ`*ä
ò†2£¢^R½•™øbŒ4ù#f’ËÄheŸÞ†!<àpå
5Mz»‘‹¼@ɧ"ùˆðrR%„?ԅìßkò2`X®`]#30ß¾b½@R»¼Vš0sôáªÈqæ„zNo¼'#š8kN1d•¹{ìŸsë±z“A¬ֈ{ÁóŒÝd@6q `OAŽ°sR>ª¢½ÉÄV`³Ó×÷'9½œK±w玞ãÌç_AOî<1÷X$¸cÐÅ~a:ÉëáûF
æI}91sHj±­áG,¿P%±Gö͈
Ñßr¨¤ÅIΌøŠíbTã±×0eMïÁ÷†ßÂ’l¸#mœ6v݀φðNÓÿ–fY§XÃÊ:ñ$Gí˜MSFÌ-=ò{-åv|~m\ö½ö[¢üI‡Ÿ;î0Äàíšèä +lô!Žk·X¸ý^¼¾}ƒu[¬âŽèÛ.æˆ;ә–ê²]“ª¯t7¢˜yîPEÆ]k3¬Æ‚+H¡6õ¥é]aŒóe%)è4 zøÖ󨹵ΑvÀwçސi.^ùõ8”gjZŽB/¦w?Ô$	|üp‹	Ј˜-rTÌfØ»ó€ZI¡¨â 
¨Ò­&RvÁېª¤cÝy¦÷ÂÅÒö$ì¯,¸@=ÕäÑVu%}'608(Ä:üX…exÄòVL¥$ê֖ǂ¹ç€NÏ2ª ï…µ«XÈŠFވ=Ú(VÅs*?Æl¿“Wƒí´haWR5boÌù+X3Ï
Ó/Çq,ŸçÎ(¤‹Ë,Á{^ò¾:[ðqÜG¸-ÿ¬¼Ç¹ZŒEŽgeZŒá53c£ë§'…‹cˆp¤äOÄ/~\`aÝ+6QÀ¬B±ªú1Xp¯öŠìÛ­rûní,„»A°£*Å®¥¢“¤FU0¶c©8÷ýZŠLŠ2'[J“%OQ’ùãP6Üfåv¿yjŒ’
ˆ%f²8“È‚ÐI¼jÙ¥¾Ý]ˌE}JaÈ^²V»;–Õ½<áÈ¥Ï3ÌL†,t:A“[Á:‘sy	 îÉVBõxå'h…Àª |.WqV“ð)[__	|)Ц¯"U—Ï«I%}U¨ʦÃÙsh­x•¨‰ÂHƒ„ŽÔÐjóÑú7œÎLó·Zf/£Â/¸Æg̉:!³¸Ãî#ÉÀÊc
¡x1\,<sJ:Èn„Mà®V9_ÛÛäšSäWáGó®V5èêísÃ*ºšþ"u‰%šEw!ÕFn$?‰íN‘A¡D‘,©°¬ÂŲCv¿]XBCÄ1íX(ç]\$»Pïž)+À¬B¦Ãñ¹•Ì
–+øÏÈh€V-hÀ- ìIH¦wtd‹»«E¦ÆLt$Տ¤G†:±]¬¥™Òiýß/-cˆã!©t)R¢tE]KH(À}ô (X‚Gþ&;ÐlQéycԃ^à“bÆÈ¢”H$)ç_Å\>ÉYþ+ْPbrx \ÂÆða©Êc˳ þï[H
[ø?b*’œQÏ×Z"0zÝ8⮏–ÁÜd~öo2´ýóYÕªˆõ2½~³{ÕÏ }’láÈu–ÑŒ˜¬³V!e’küjly#CÒ]]àº<âgFŠÎCÛõ1ø…NK
?Ë3ú@^4q
Í¢Ò‰:.9ÁŸ{ž{O%ýÌ´<8Rù<$”E%ùB}…»g¦¶b‹ Ä ô¥d¿}>Xæû²ñRʏ`±¬?j‰Ä_äô!c‹ã0Á¯êÚþ³£(-©Tuøôi‰Û*Híå¥N~Dn$©ÑfópgÝ-ŒÒ6÷ßÀ]•ífÌÑTÌc´Û{–pâˆÜàU¸ó˜ù‘÷Jvwo I©*”n/ÔWƒ*‹ÓÓU„Ý*Ø¡/.½å!ô–µœPòŠÇÂ`ӓ=ÊnÃ
ºOð-ϧø‹çםÔD·¬/âXž1l¸”ŽßÚn–wð-Ï'^¬ÇÈMv®ü:Š=±ð;‡ð«…hòg‘2§ËÆ\®úçylÊOPì°ÅpÍLo8¡«iñ9Gü.v!>¡IÝÐÎ|sfñ¾ø‘¯Døí¬Ä~/’<âXw¦´Ó´íŽ…Kæ¶JN‰ßYf4ºŽuâ0¡OÄ	˜¾±A©}?²âMsôHÜFmk:£„Óé²éÚ,>Š~ƒ“eOxh(!Ó
,¦ƒ([”R¨¹t#„¤Ú|ƒüçõWAQê@$‹Í’`D´Œ¨µ_ºyj#–xxõ©®¨=š–mÞÙ¬AÛ@òÙD†Žoù& 
N
.E"„m‰¦‡ub \?•XÖ`ZJ5f’íU˜	ðk1^‹¹ð•˜‹ì•˜‹ì+1—ôWb.é_«ý×jc?ĬÆ$:ã·âò::maçµèSÖ®&$Fq5}&Š¹á`ê¯ëµýØ9$:xUOœ>
¬X¬žIò4iBý×½A«ýÞhÒ	fû¼Õ…Gÿî¬Û¼ê0ÁB³ØiCMÉHÑxxQÃœ £¦ù[÷²	ÊoXþ^´ag<£C„˜ÚÎØí!5Ué\ôú—Zç‚OG˜}P²°£&O8	~º¶“¬"ëÝnçÂQNRþv.®»ío¤¿‘6ÂüçœyÏ×ô=NM•v¤´PpjÀŽvqÕ>ᅥ~i&,@È›õLùæzeȑ$VÎçùfó7¾oðã4¾xèq3]UÝG9Õл·'*?í~¹F¥„—@őï–ˆ„Ù,Ú}¸ë·¼*äN秗eEH"¬enn2ÚöãXÛæE€„—„·äêCöÇ{§£EŒþYï8d¯êD@¸> /›ŸÅŸ±Çxñ.ÜGôòŸÈõ&V˜gË$ÿ„1'µÞeÓvÎØtMÉä&V„aõõ´)Qb´¬®°/“Ràù7˜¹¤‚ì†`/@ÖEƒA@I›Ð´,’B,§K4)WÎ0éðq:Á5ˆ˜M1*
¿.ÅHÖJTª<
Õ,»…uööâÍÏÒ ƒ¦#l(J¯_ë_õµFÃèõ×ín§Æ¿åE†Ñs
….Ñ óEág¿€ñ¾a\ÔÀxo4®úÆà]í¼Ù1.á(6Öèž÷ÛçWÆ gÔ.ï6Ÿ?FD¨Î¯
‡”Ç^[®mò¾…û@瘧`­¨±³…5Åÿ¯øh¬¹æãcýU
…×}±Û4íau·šúT~ûb{‹6&›–{˜ÌÒUæV·'¿—ç™…ñA–ìø–-p8œª2áMÌã@{IXãIÙ¦ùb…Šƒo:„âä5=<SâM5Ú%ÅT<VÓö¨ZEƒôˆV÷òlÀ?ˆpÿ‡<F=ïӋŽ0•lE2ó
&¹+QÖD[ñÚ
ðÌÍmFr{Sîª"üL“¨qZR;âò`k-Ø´Iq~ø.¹2GrÝfY'¡ý¢Ë±Ô…qù¥M\Ö0È[òˆLä6±cl`ZÁÎù¿ÃYæ_‡k!m›k<4éRòÀƒ›K²ÿ€ì?œi?üQ	Ý?qlÂãJ<KuEä8µ,9bwܦ%´X=õp«TºCz‰“¬!¡Ô.•Ê.c{á6fŽÛ¶âX-~¯ÊÏ'ßÃÏïo2­Åe%EˆŸ}øyž
ÿ£ÓK‰g+Á*ßu“=tE…¥Ý¢ù
nª§§/«<¹ná£eQC±×@ØKˆH¦åiW¸¯®ßG¹c¦OÃÕwøÄWŸqÖ½ü}P¯õڍ™þòLÄðåZüVç­}…÷^[^07mžª(›Üs«áMÛwwÔKvÎEîúo?ýÞ~úYl¤ÎˆâÛçªÅÒµ-UÿxA&ñÍö+%ÂBãuF\1 šÒFŠÍ]§ç¸š×i9¥äøwk'ù¥Nµ{rÉ%2m{¹>—ÐrÕàJØ$l‡yüyôQ™2…t|ÛVÄÁ¿úÿüÿðüËd“;<
(90955) /nesumin <nesumin@softhome.net>/--(Ombruten)