None

22 Feb 2000

      [203.97.2.226])
 by johnwayne.waikato.ac.nz (8.9.1a/8.9.1/Debian/GNU) with ESMTP id =
KAA06207
 for <nznog(a)list.waikato.ac.nz>; Wed, 23 Feb 2000 10:44:28 +1300
Received: from [192.168.0.4] (admin4-admd-skyt.qsi.net.nz [202.89.128.132] =
(may be forged))
 by tardis.patho.gen.nz (8.9.3/8.9.3) with ESMTP id KAA20340;
 Wed, 23 Feb 2000 10:44:25 +1300 (NZDT)
Message-Id: <200002222144.KAA20340(a)tardis.patho.gen.nz>
X-Mailer: Microsoft Outlook Express for Macintosh - 4.01 (295)=20
Date: Tue, 22 Feb 2000 14:37:18 +1300
Subject: 12 good reasons to choose webmail.net.nz [WAS: Media announcement
  on free webmail]
From: "Rob Isaac" <rob(a)terabyte.co.nz>
To: nznog(a)list.waikato.ac.nz
CC: Joe Abley <jabley(a)patho.gen.nz>
Mime-version: 1.0
X-Priority: 3
Content-type: text/plain; charset=3D"US-ASCII"
Content-transfer-encoding: 7bit
...
On Tue, Feb 22, 2000 at 01:40:35PM -1100, reply(a)webmail.net.nz wrote:
...
Show Off New Zealand announces the launch of its free web-based Email
service Webmail.net.nz in conjunction with American Email giant =
Commtouch.
These guys win today's prize for the least clue displayed in a public
forum. I have tried to think of a more moronic way for them to advertise
their product, and I have failed.
Congratulations!
Twelve good reasons to choose webmail.net.nz as *your* web email provider =
-- a list of twelve publicly known exploits against Microsoft IIS, version =
3.0, currently being run by 'webmail.net.nz':

Bugtraq ID:  978
2000-02-09
NT IIS ASP VBScript Runtime Error Viewable Source Vulnerability

Bugtraq ID:  968
2000-02-02
NT IIS idq.dll Directory Traversal Vulnerability

Bugtraq ID:  592
1999-07-20
Persits AspUpload Buffer Overflow Vulnerability

Bugtraq ID:  529
1999-07-19
NT IIS MDAC RDS Vulnerability

Bugtraq ID:  591
1999-07-07
NT IIS SSL DoS Vulnerability

Bugtraq ID:  477
1999-06-24
NT IIS Double Byte Code Page Vulnerability

Bugtraq ID:  501
1999-03-08
NT IIS ISAPI Extension Vulnerability

Bugtraq ID:  230
1999-02-11
NT Using ASP And FSO To Read Server Files Vulnerability

Bugtraq ID:  194
1999-01-26
NT IIS IISAPI Extension Enumerate Root Web Server Directory Vulnerability

Bugtraq ID:  192
1999-01-24
NT IIS FTP DoS / Buffer Overflow Vulnerability

Bugtraq ID:  149
1998-07-01
NT IIS ASP Alternate Data Streams Vulnerability

Bugtraq ID:  676
1998-06-26
Multiple Vendor PKCS#1 Vulnerability

They're currently vulnerable to 978, 968, 591, 477, 501, 230, 194, 192 and =
149.  I can't confirm the others, mainly because their server seems to =
lack the needed third party software that makes the exploit possible.

Be sure to recommend them to all your friends, just because of their =
innovative marketing strategies.  By 'your friends', I mean bored fifteen =
year olds with ADSL, cable modems or wheel on lots of well connected =
machines.

*cough*

We now return you to your normal, spam-free programming.

Regards, Rob.

                                                      =20

---------
To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz
where the body of your message reads:
unsubscribe nznog

None

tags

participants (1)