A quick note to warn you that the first code sample has been released to try and exploit the recently announced DNS cache poisoning vulnerability. While most users will be relying on their ISP etc to ensure they have patched the hole, you should also make sure that you have applied any required OS patches/updates [...]
Ini bukan tool penetrasi atau tool mencari korban WordPress yang bisa di exploitasi, namun sebuah tool untuk mengecek diri sendiri, sudahkah Anda menjadi korban exploit, atau sudahkah wordpress Anda disusupi malicious script. Mengingat maraknya spammer yang semakin liar caranya membuang sampah termasuk menyusupi script malicious untuk menginjeksi komputer pengunjung blog (wordpress) Anda, ada baik
"De acordo com a Symantec, sites legítimos hospedando conteúdo do Adobe Flash Player podem ser comprometidos ao utilizaram um JavaScript que redireciona os usuários para um servidor chinês de malwares. As versões do Flash Player afetadas incluem a 9.0.124.0 (a mais recente) e a 9.0.115.0.A Symantec informou que sob certas circunstâncias, o JavaScript integrado ao player redireciona os usuár
MMORPG blog
Known/Patched Flash Exploit Can Target WoW AccountsThe Mac Observer - 5 hours ago… 2008 A known and patched exploit in Adobe's Shockwave player — a component of Flash — can be used to target World of Warcraft player accounts, …Flash exploit used to steal gaming passwords Virus BulletinVulnerability discovered in Adobe Flash, resolved by updating [...]
If you have not yet applied the patch that Adobe released last month to plug security holes in its Flash Player, do not procrastinate further: Security experts warn that a growing number of Web sites are using Flash vulnerabilities to install password-stealing software when users visit them with unpatched Web browsers. It’s not [...]
A very recent news on Zdnet announced that there is an very serious exploit that Adobe Flash Players 9.0.115.0 and 9.0.124.0 are vulnerable; other versions may also be affected.
The link to the whole story is here.
Strategyfreaks.com Re-launchs Dofus Exploit CommunityThe Open Press (press release) - 1 hour agoBesides Dofus, Strategy Freaks also provides similar services to players of Age of Conan, World of Warcraft, Lord of the Rings Online and many more MMORPG …
Written by Google Inc. and Powered by WordPress
How many sites do you own, where the traffic generated from long tail keywords far exceeds that of the main keyword? I know personally about 60% of my sites gain most of their traffic through their long tails as opposed to their mains. Therefore how can we exploit the long tail keywords of individual niches in a way that will maximize traffic without spamming the search engines?
The Duplication exploit is still not fixed in this patch, but according to Famine, they are still working on a solution for this along with other issues concerning trader NPCs.
May 23 Age of Conan Patch notes / change log.
Playfields
* Characters should no longer get stuck when they zone into Lacheish Plains.
Items
* [...]
Google is everyone’s favourite, and the most popular search engine. People from all over the globe use it. Mainly because, it is fast, simple and always gives relevant results. But how about adding a little more in search results? Would you like if you could refine those results to match even more personal criteria?
Google Hacks [...]
d Wife suspected it when we watched Miss Pettigrew Lives For a Day and I did not complain.d Wife confirmed it the day she suggested we watch Enchanted on pay-per-view and I said "Sure! ok!" and got off the computer right away without a fuss."You totally crush on Amy Adams, don't you!""What? No, no, she's pretty, I mean, she does look like a Disney princess and all... but n
A recently-discovered flaw in Gmail is capable of turning Google’s e-mail service into a highly effective spam machine. According to the Information Security Research Team (INSERT), Gmail is susceptible to a man-in-the-middle attack that allows a spammer to send thousands of bulk e-mails through Google’s SMTP service without fear of detection. This attack bypasses both [...]
Here are the five most common methods insiders use to access network resources and simple measures enterprise IT can take to protect against the implied threats.1. Modems.A lack of central management combined with easy-to-guess static passwords make modems an ideal entry point for insiders with detailed knowledge of a network. Many companies have tried to address this challenge by simply unpluggin
Download Exploit Client Terror V.4 by SatmaSalah satu booter terbaik saat ini menurut saya, menggunakan opsi exploit sehingga meskipun pm dalam keadaan terkunci, tetep gampang dc, meskipun menggunakan chat client dengan locked pm. Pengecualian jika si victim menggunakan gawd mode atau shield on.
Radware, producers of Enterprise Security Software, have claimed to have identified a Denial of Service (DOS) flaw in the iPhone’s mobile Safari browser. The bug is triggered by ajavascript command on a web page, and could result in Safari crashing, or even the iPhone itself becoming unstable. The bug can be found in the [...]
The goal of this guide is to be used as a reference for concerns about legal and illegal actions in competitive play for Counter-Strike: Source.
BASIC GAME PLAY EXPLOITS(Exploits concerning general game play and a basic description of what is legal and illegal.)
BOMB PLANTING AND DEFUSAL
Bomb PlantingAttempting to make the bomb undefusable by covering it with objects is ILLEGAL [
A Flash flaw discovered this month could change the face of Web security by allowing criminals to infect users of any browser or operating system with malware — without making their browser or application crash.
An IBM security engineer has published research showing that exploits using software such as Adobe’s Flash are set to become far [...]
The paper "Application-Specific Attacks: Leveraging the ActionScript Virtual Machine" written by Mark Dowd in which he describes various techniques that promise to open up a class of exploits and vulnerability research previously thought to be prohibitively difficult. While the Flash vulnerability described in the paper [pdf] has been patched by Adobe, the presentation of a [...]
Apple iPhone Safari browser is vulnerable to DoS attacks due to a design flaw that may be triggered by a series of memory allocation operations on the dynamic memory pool, which in turn triggers a bug in the garbage collector. The security hole is currently unpatched, leaving iPhone owners vulnerable to potential attacks until Apple issues a security update.Apple has yet to comment.This blog will tell you how to Unlock Jailbreak Activate and Hack your iPhone and iTouch firmware for FREE
Radware's Security Operations Center is claiming to have discovered a new Denial-of-Serivce vulnerability in the iPhone's Mobile Safari web browser in the 1.1.4 firmware. The exploit would require that a user click on a link to a web page containing Javascript that triggers the vulnerability, causing Safari to crash.
read more
From: Nuclear Spring Anne Lauvergeon (or "Atomic Anne," as the press calls her) is the fourteenth most powerful woman in the world, according to Forbes. She owes this rank, and her nickname, to the fact that she heads the French nuclear company Areva. Three weeks ago, Lauvergeon made an appearance at Harvard's Center for the Environment. And, when she strode to the lectern, she set about toying with the expectations of her audience. Where Americans are accustomed to hearing Europeans lambaste their wasteful way of life and degradation of the planet, Lauvergeon took a more counterintuitive approach: "A tribute to your country's essential contribution to the world debate on the crucial issue of climate change!" She continued, "Yes, I want to pay tribute to Vice President Al
Web designers making very old mistakes are letting malicious hackers hijack visitors to their sites, say experts. Many of the loopholes left in the code created for websites have been known about for almost a decade say the security researchers. The poor practices are proving very attractive to hi-tech criminals looking for a ready source of victims. According to Symantec the number of sites
Hillary Clinton spoke to a union in Pennsylvania today, and they didn't seem to be buying her latest assault on Obama.As she went on to say, "Well, you know, I know that many of you, like me, were disappointed by recent remarks that he made," scattered boos and calls of "No" could clearly be heard from the audience.
Parece que o PS3 acabou obtendo seu próprio Hello World como saudação em cortesia do Dragula96, um conhecido hacker de PSP. Segundo Dragula96, ele recentemente descobriu um exploit no PS3 firmware oficial 2.20 e foi capaz de pôr o seu próprio Hello World como prova de conceito. Atualmente, ele não compartilha como ele o fez; [...]
…Una prueba de concepto publicada por milw0rm.com el pasado domingo (30/03/08)…
Segun esta prueba de concepto se ha encontra un agujero de seguridad en el Office para XP SP3, especificamente la vulnerabilidad se encuentra en PowerPoint.
Una prueba de concepto publicada por milw0rm.com el pasado domingo (30/03/08), puede ser utilizada para la ejecución de código mediante la [...]
Spybot - Search & Destroy pode detectar e remover diferentes tipos de "programas espiões" de seu computador. Esses espiões são uma ameaça relativamente nova que os programas antivírus mais utilizados ainda não eliminam. Se você se deparar com novas barras de ferramentas em seu Internet Explorer (que você tem certeza de que não instalou), se seu navegador trava inexplicavelmente, ou ainda a página inicial do seu navegador mudou e/ou foi travada em outro endereço, sem que você saiba como, você provavelmente tem algum desses programas espiões instalado. Mas mesmo que você não veja os sintomas, pode tê-los rodando em seu computador, já que a cada dia surgem mais e mais desses programas com a capacidade de rastrear silenciosamente as suas atividades na internet. A fina
MS Word subjected to selective attacks.
Microsoft confirms Word attacks
Microsoft has confirmed reports of vulnerability in Word that allows an attacker to exploit a system via the Microsoft Jet Database Engine, which shares data with Access, Visual Basic and third party applications.
Microsoft in its advisory said the potential for attack is “very limited.” Reports of the Word flaw were
And you know what means, don’t you? New firmware soon! Well, not necessarily, but if the newly-discovered Safari exploit turns out to be bad enough, Apple might find enough reason to work up a version 1.1.5 — or at least a patch of some sort, which I’m sure the jailbreak community will come up with [...]
On Thursday, the BBC ended an exploit which allowed users to use the network's iPlayer software to download its TV shows permanently. Through altering the user string of a URL on a desktop computer, users were able to fool the iPlayer software into believing it was operating on either an iPhone or an ipod touch.
read more
Microsoft (24hoursnews)'s Patch Tuesday came a day late after a U.S. Computer Emergency Readiness Team advisory warned that a targeted Trojan attack may exploit one of Office Excel's known vulnerabilities.
Altogether, the vulnerabilities can be found in Microsoft Office Excel 2003 Service Pack 2, Microsoft Office Excel Viewer 2003, Office Excel 2002, Office Excel 2000 and Excel 2004 for Mac.
Things to know:=- Vulnerability : a security hole, can be exploited to change the way the webapp / software works / functions.=- CMS's, Forums uses DataBases to store the info like users, posts, threads, messages and so on, its usually / mostly a MySQL server.=- RFI [ Remote File Inclusion ] : a malicious user can include a 'bad' code to be executed on the vulnerable site.=- LFI [ Local File Inclusion ] : a malicious user can open any file on the server.=- SQL Injection : Injecting a MySQL query to bypass or get more info from a DataBase.=- XSS [ Cross Site Scripting ] : if it was a permanent vulnerability, where the users input is saved, the user can log cookies, IP, and much more...=- Exploit : a script made to maliciously use a vulnerability.+------------------------------------------+|
For those guys who updated their Vista with the KB940150 patch without knowing what it does and promptly received a message regarding SL07-001 or other SL07 Activation Exploit being detected, here are a few workarounds :
Got fixes for SL07-001 and Sl07-006 or Activation exploit detection that were not listed here? post them at the comment [...]
Update : I’ve started making a knowledgebase for solving both SL07-001 and SL07-006 problems here :Fixes for SL07-001 and SL07-006 detection problems (Vista activation exploit)
Ok, Windows Vista Update came up to me and asked me to Download a KB940510 update from … well I thought it was a regular update, hotfix and all that so [...]
A while back a couple of my blogs was hit with a hacker where he inserted multiple spam links in my blogroll. Eventually at wordpress, I found where they talked about the problem and a supposed fix. The problem is it didn’t work. The only thing that worked was renaming the link.php [...]
The beauty of the creation of Google Adwords is its simplicity. Programmers Google appears to be a close follower of the highest given by Edward Debono when it comes to simplicity. Log in and start it is very easy and takes a few minutes to get his campaign moving.
If you are new to the Google Adwords, all you need to do is relax, and go through the steps listed below to start off in one of the most technically advanced plans for advertising on the Internet: Step 1: Define the eyes: The first step would be to define the target audience of your ad. There are a number of fields to select from which help you get geography and language preference of the audience created so that their ads are displayed only to the audience. This process results in a group of ads, and you can define several sets
El que algunos han declarado como, un gravisimo fallo en la seguridad de Linux, el exploit local contra el kernel Linux que hizo saltar las alarmas hace apenas 10 días, vuelve a ser noticia, pero esta vez, para bien.Dicho exploit afectaba a las versiones del kernel: de 2.6.17 a 2.6.24.1, debido a un bug en vmsplice. El exploit, publicado en la lista de bugs de Debian, permite conseguir shell de root al ser ejecutado.Bien, pues el sitio DistroWatch hace un resumen de la rapidez con que las principales distribuciones GNU/Linux respondieron publicando sus correcciones al problema. Todas las distribuciones reaccionaron en menos de 48 horas: 1. Debian (0+ horas)2. Fedora (8+ horas)3. Slackware (12+ horas)4. Mandriva (19+ horas)5. Frugalware (21+ horas)6. OpenSUSE (23+ horas)7. rPath (26+ h
El que algunos han declarado como, un gravisimo fallo en la seguridad de Linux, el exploit local contra el kernel Linux que hizo saltar las alarmas hace apenas 10 días, vuelve a ser noticia, pero esta vez, para bien.Dicho exploit afectaba a las versiones del kernel: de 2.6.17 a 2.6.24.1, debido a un bug en vmsplice. El exploit, publicado en la lista de bugs de Debian, permite conseguir shell de root al ser ejecutado.Bien, pues el sitio DistroWatch hace un resumen de la rapidez con que las principales distribuciones GNU/Linux respondieron publicando sus correcciones al problema. Todas las distribuciones reaccionaron en menos de 48 horas: 1. Debian (0+ horas)2. Fedora (8+ horas)3. Slackware (12+ horas)4. Mandriva (19+ horas)5. Frugalware (21+ horas)6. OpenSUSE (23+ horas)7. rPath (26+ h
El Local Root Exploit en Kernel Linux 2.6, del que ya hablamos, y a grandes rasgos tenía que ver con la posibilidad de dar privilegios de administrador (root), a un usuario sin común. Ya fue solucionado, y la rapidez con que se dio repuesta, la verdad es que sorprende, esto a pesar de que este exploit no fue considerado crítico.Esta tabla muestra la rapidez con que parcharon el kernel las dis
El Local Root Exploit en Kernel Linux 2.6, del que ya hablamos, y a grandes rasgos ten??a que ver con la posibilidad de dar privilegios de administrador (root), a un usuario sin com??n. Ya fue solucionado, y la rapidez con que se dio repuesta, la verdad es que sorprende, esto a pesar de que este exploit no fue considerado cr??tico.Esta tabla muestra la rapidez con que parcharon el kernel las dis
El Local Root Exploit en Kernel Linux 2.6, del que ya hablamos, y a grandes rasgos tenía que ver con la posibilidad de dar privilegios de administrador (root), a un usuario sin común. Ya fue solucionado, y la rapidez con que se dio repuesta, la verdad es que sorprende, esto a pesar de [...]
Este exploit afecta al Kernel Linux versión 2.6 de Ubuntu y Debian, el exploit es necesario ejecutarlo como usuario local, para así obtener identidad de root.
Los Kernel Linux afectados son desde la versión 2.6.17 hasta 2.6.24. Por el momento para solucionar el problema de seguridad, habría que compilar nuestro propio kernel eliminando vmsplice.
Pruebas hechas en Ubuntu apuntan a que funciona
Este exploit afecta al Kernel Linux versi??n 2.6 de Ubuntu y Debian, el exploit es necesario ejecutarlo como usuario local, para as?? obtener identidad de root.
Los Kernel Linux afectados son desde la versi??n 2.6.17 hasta 2.6.24. Por el momento para solucionar el problema de seguridad, habr??a que compilar nuestro propio kernel eliminando vmsplice.
Pruebas hechas en Ubuntu apuntan a que funciona
Este exploit afecta al Kernel Linux versión 2.6 de Ubuntu y Debian, el exploit es necesario ejecutarlo como usuario local, para así obtener identidad de root.
Los Kernel Linux afectados son desde la versión 2.6.17 hasta 2.6.24. Por el momento para solucionar el problema de seguridad, habría que compilar nuestro propio kernel eliminando vmsplice.
Pruebas hechas en [...]
/*
* jessica_biel_naked_in_my_bed.c
*
* Dovalim z knajpy a cumim ze Wojta zas nema co robit, kura.
* Gizdi, tutaj mate cosyk na hrani, kym aj totok vykeca.
* Stejnak je to stare jak cyp a aj jakesyk rozbite.
*
* Linux vmsplice Local Root Exploit
* By qaaz
*
* Linux 2.6.17 - 2.6.24.1
*
* This is quite old code and I had to rewrite it to even compile.
* It should work well, but I don’t remeber original intent of all
* the code, so I’m not 100% sure about it. You’ve been warned
*
* -static -Wno-format
*/
#define _GNU_SOURCE
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#define __KERNEL__
#include
#define PIPE_BUFFERS 16
#define PG_compound 14
#define uint unsigned int
#define static_inline st
An advisory originally posted on Milw0rm.com states that Apple QuickTime versions 7.2 and 7.3 on Microsoft Windows Vista and Windows XP Pro SP2 are both affected and also Apple’s iTunes because it also contains a QuickTime component, they
may also be at risk, according to a security advisory by the United States Computer Emergency Readiness Team (US-CERT).
From News.com
The security flaw is found in the Real Time Streaming Protocol (RTSP) supported by Apple’s QuickTime Streaming Server and QuickTime player, US-CERT notes. As a result, users who load a malicious RTSP stream via a QuickTime Media Link file or by visiting a malicious Web page, may find their systems compromised. Malicious attackers, for example, could execute arbitrary code from users’ systems or launch a denial-of-service attack.
What to do? Go to Apple Downloads and Download the latest fixes and workarounds also for more solutions you can checkout US-CERT’s Article on Apple QuickTime RTSP Content
Instructions for exploiting a previously undocumented security hole in Apple’s QuickTime media player software are now available online, and security firms are warning that it may not be long before we start seeing criminal groups taking advantage of the flaw to break into vulnerable computers. According to an advisory from the US-CERT, the [...]
A security researcher using the pseudonym cocoruder recently reported a stack overflow vulnerability in the way Microsoft® JET Engine parses MDB files. According to cocoruder, a remote attacker can exploit the vulnerability in order to execute arbitrary code on the affected system.
Share This
Vulnerability allows malicious code into browsers, revealing users' Google accounts.Mozilla has taken another security blow with the discovery that Google user accounts can be accessed through a dangerous Firefox exploit.The vulnerability, which is still in the wild some 10 days after its discovery on gnucitizen.org, allows hackers to access Google accounts, including Gmail, with cross-site
Mozilla has taken another security blow with the discovery that Google user accounts can be accessed through a dangerous Firefox exploit.
The vulnerability, which is still in the wild some 10 days after its discovery on gnucitizen.org, allows hackers to access Google accounts, including Gmail, with cross-site scripting attacks.
A client or server-side exploit can be inserted into .zip files via open document formats from Microsoft Office 2007 and OpenOffice, and uploaded to a server where the Firefox JAR protocol extracts the compressed data.
(more…)
Share This
You might want to sit down for this one, folks. It's pretty absurd. Rik Farrow of Fast Company has discovered a way similar to that used for the iPhone TIFF exploit in 1.1.1 to maliciously download malware to their iPhones, after which a hacker has complete control of the iPhone.
read more
Esta vulnerabilidad afecta a las versiones de firmware 1.1.1 y anteriores del iPhone de Apple.BitDefender ha actualizado sus soluciones antivirus con firmas especialmente diseñadas para detectar los archivos TIFF deformados creados para vulnerar el navegador Safari del iPhone.Este exploit ha sido publicado recientemente como método para “desbloquear" el iPhone, eliminando así, las restricciones sobre el software que puede instalarse y ejecutarse o, incluso liberar el teléfono para que pueda funcionar con operadores de telefonía diferentes. Sin embargo, esta técnica expone al iPhone a ataques de terceros, que podrían utilizar este exploit para instalar o ejecutar código con permisos de administrador (el nivel de permisos más alto, superior incluso al del propietario del dispositivo).Los propietarios de teléfonos desbloqueados tienen un riesgo mayor, ya que instalando una versión posterior del software no solventan su problema, pues la vulnerabilidad estará presente en su e
Is all this talk about iPhone security exploits freaking you out? The possibility that something like this could be used maliciously has crossed my own mind, and it's a scary thought. Luckily the good guys are on top of it. Not only did they find it, but they're fixing it, too. If you take a look at the features page for AppSnapp, you'll see that feature #6 of AppSnapp is that it fixes the very exploit it uses.
read more
RealNetworks, the maker of the RealPlayer and RealOne media player software, has issued a security update to fix a flaw that hackers are actively exploiting to break into vulnerable computers. The stand-alone patch, available here, remedies a flaw in RealPlayer 10.5 and RealPlayer 11 beta. RealNetworks says people using RealOne Player, RealOne Player [...]
Symantec Corporation has issued an alert that rated a threat with its highest possible score after finding attackers exploiting a zero-day vulnerability in RealPlayer that infects Windows machines running Internet Explorer. An ActiveX control installed by RealNetworks Incorporated's RealPlayer program is flawed in such a way that it can be exploited and malicious code downloaded to any PC that wanders to a specially crafted site.
Only systems on which both RealPlayer and IE have been installed are vulnerable. Multiple versions of RealPlayer install the ActiveX control, including the current 10.5 and the beta of Version 11. RealNetworks has not released a fix, but Symantec said it had informed the media player's maker of the bug. Until RealNetworks releases a patch, Symantec said the best advice it can give is to disable the vulnerable ActiveX control but this requires editing the Windows registry.
Source:→ ComputerWorld
ActiveX, Bug, Exploit, Internet Explorer, RealPlayer,
By Sophie WhiteThere is a current and active way to knock a website out of Google's search engine results. It's simple and effective. This information is already in the public domain and the more people that know about it, the more likelihood there is that Google will do something about it. This article will tell you how it works, how to get a website knocked out of the search engine rankings, but most importantly, how to defend your own website from having it happen to you.To understand this exploit, you must first understand about Google's Duplicate Content filter. It's simply described thus: Google doesn't want you to search for "blue widget" and have the top 10 search terms returned copies of the same article on how great blue widgets are. They want to give you ONE copy of the Great Blue Widget article, and 9 other different results, just on the off chance that you've already read that article and the other results are actually what you wanted.To handle this, every time Googl
Advanced New Software Sends You Boat Loads Of Free Laser-Targeted Traffic, Hundreds Of Relevant Backlinks, And A Raging Torrent Of Search Engine Spiders To Any Page You Want! Click Here!
Get $1...
By: Sophie White
There is a current and active way to knock a website out of Google’s search engine results. It’s simple and effective. This information is already in the public domain and the more people that know about it, the more likelihood there is that Google will do something about it. This article will tell you how it works, how to get a website knocked out of the search engine rankings, but most importantly, how to defend your own website from having it happen to you.
To understand this exploit, you must first understand about Google’s Duplicate Content filter. It’s simply described thus: Google doesn’t want you to search for “blue widget” and have the top 10 search terms returned copies of the same article on how great blue widgets are. They want to give you ONE copy of the Great Blue Widget article, and 9 other different results, just on the off chance that you’ve already read that article and the other results
By Ben SteinHere's a fact: The speculators and hedge fund managers who run today's stock market need market volatility in order to make money.They can't make enough money if the market stays flat or moves only a bit, so they like extreme and unexpected price movements. They especially like sudden, surprise movements down, when they can make money off stocks they borrow and sell -- or, as they say, "sell short."Money Lust SatisfiedThat's what's been happening the past couple of weeks. But it's not interesting to say that the speculators are whipping the market around to satisfy their money lust. So the speculators themselves make up reasons for why the market is fluctuating, flog those reasons to the media, and then profit if some other speculators believe the jive reasons and jump in the way the manipulators want them to. Supposedly, the market is "correcting" because of worries about the housing slowdown, and also because of fears that the debt markets that support mergers and a
Looks like the protocol handler problems just won’t die. On July 20th, Jesper Johansson reported that Firefox 2.0.0.5 didn’t quite get all the bugs out of passing strings to external programs registered as protocol handlers. 10 days later, Mozilla has released a patch in version 2.0.0.6. The first version of the patch was actually coded on July 21st, finalized on the 23rd, tested and reviewed, and released to auto-updates on the 30th. You can see all the gory details in bug 389106 .
Ironically, FF appears to have been doing the same thing that IE was doing, which Window Snyder called a “critical vulnerability in IE” on the 18th. Snyder gave Microsoft a hard time because they were not planning a fix, but on the 23rd he had to eat crow, saying:
(more…)
Share This
On July 10, engineers at Secunia issued a security advisory, rated "Highly Critical," warning Firefox users that their browser could be tricked into executing arbitrary JavaScript code. While Internet Explorer was originally blamed for the ability to trick Firefox, as it turns out, Mozilla admitted today its own browser is to blame, even after a patch was released.
More...
Merchant services are usually filled with loop holes and can be exploited in many different ways.Usually merchants are always under pressure from competition, which is the most painful nerve that one can step on. Merchants always offer competitive prices and may even add more or something extra with the service. [...]
Trend Micro (pc cillin)has detected - bloodhound.exploit.109 on system. Said system is on a home network of 2 pc's.Logfile of HijackThis v1.99.1Scan saved at 1:06:37 PM, on 6/27/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet...
More...
Researchers have been charting the rise in threats created by a new software exploit tool known as “Mpack,” a virtual attack kit designed to be embedded in hacked or malicious Web sites. It targets security holes in multiple software products, including Apple’s QuickTime media player, and outdated Windows plug-ins for Mozilla’s Firefox and [...]
El otro dia posteamos un exploit para KAV y ahora le toco el turno a Zone Alarm, un firewall muy usado por su servidor.El post original esta en ingles aquíZoneAlarm Pro version:7.0.337.000Driver version:7.0.337.000Actualmente estamos trabajando con varios antivirus / firewalls y estamos probando la estabilidad de algunos de ellos . Lo cual muestra una muy mala situación. ;)Todos adoran usar ganchos =), desafortunadamete el nivel de conocimiento de sus desarrolladores de drivers para el kernel deja mucho que desear. Simplemente no saben como manejar los ganchos en la SSDT.Sistema: Windows XP SP2 sin PAEExploit: NtCreatePort pobre manejo del gancho, service id 46NtCreatePort esta ganchada por las fucniones del driver vsdatant.sys.Prototipo de la FunciónNTSYSAPINTSTATUSNTAPINtCreatePort(OUT PHANDLE PortHandle,IN POBJECT_ATTRIBUTES ObjectAttributes,IN ULONG MaxDataSize,IN ULONG MaxMessageSize,IN ULONG Reserved);Aquí estan un pequeño exploit que conduce a un pantallazo azul.Este exp
If your claims are legitimate, why use illegitimate means? If with your violent actions the world turns a blind eye, why use illegitimate means? If you use illegitimate means, the world turns a blind eye and your true aim is the annihilation of Israel; keep it up. No two state solution will ever satisfy the bloodthirsty ignorance of those intent on the destruction of IsraelFrom The Israel Project:On June 9, the Iranian-backed terrorist organization Palestinian Islamic Jihad (PIJ) and Fatah Al-Aqsa Martyrs Brigades, a radical offshoot of Palestinian President Mahmoud Abbas' Fatah party, used a vehicle labeled "TV" to try to kidnap Israel Defense Force (IDF) soldiers. [1] The Israel Project condemns PIJ's use of a vehicle disguised as a TV van to perpetrate terrorist attacks against the IDF across the Gaza border. This contravenes international conventions relating to the neutrality of the press. It also jeopardizes foreign journalists' ability to perform their work in a fair and
For all those who haven’t been following the progress of leetupload.com, lets just say that its a repository for everything hacktastic that has ever or will ever exist on the net. For those who have been following leetupload, and signed up to be a member, the viri and exploit db is ready to plunder!!!
NOTE: If you haven’t signed up for membership and you feel all left out and benchwarmery inside, follow this link: http://www.leetupload.com/signup_form.php
On to the good news!!
Here’s the email I got today (with a couple edits for my sake):
The database of Virii and Exploits is finally up! This is a proud day for leetupload.com.
If the first time you load the database is slow, just give it some time. From thereafter, it should be smooth sailing.
In other news: As of yet, we currently have 503 members, so keep them coming!
To login, click here: http://www.leetupload.com/login.php And then select which database you prefer; “Exploits” or “Virii.”
Dopo la sbalorditiva notizia di ieri che tramite uno switch e qualche saldatura e’ possibile eseguire backup Ps2 sulla Ps3 oggi arriva un altro exploit trovato “per caso” da utente di un forum estero. Il bug si basa sul gioco Resistance : Fall of man, infatti con una procedura che descriveremo sotto e’ possibile lanciare giochi (niente backup) sulla Ps3 che richiedono l’update del firmware senza aggiornare. I passi da seguire sono i seguenti :
- Iniziate una partita normalmente e durante il gioco mettete in pausa
- Una volta in pausa estrae il Blu-Ray di Resistance : Fall of man ed inserite il gioco che preferite eseguire che richiede l’aggiornamento del firmware ed aspettate qualche secondo
- Selezionate sempre nel menu’ “quit and save” (salva ed esci) e come per magia il gioco che avrete inserito precedentemente verra’ eseguito senza richiesta d’aggiornamento del firmware.
Le prove sono state effettuate con una Ps3
A major spike in activity targeting TCP Port 1025 on Windows systems may be a sign that attackers are gathering intelligence for an upcoming attack against unpatched servers, Symantec warned Monday. Symantec’s DeepSight threat network has seen a “pretty sizable” increase in the number of sensors that have registered events on TCP Port [...]
Today we have detected a server exploting the last ani vulnerability with the known “Heap Spraying” technique. The ani file exploits the vulnerability nevertheless there isn’t a shellcode inside it. The html page has a javascript code to inject heap as much as possible until a valid memory become the return address to [...]
Only workarounds for now
Attackers are targeting a flaw in the DNS service for Windows server OSes that could hijack the computers that run them, Microsoft warns. The software behemoth advises admins to employ workarounds pending completion of its investigation.…
Read more…
Not a hacker? No problem! Not even technically skilled? Again no problem. “2007 Doc Binder” will do all the work for you! Exploiting vulnerabilities across Microsoft products has never been easier! According to Symantec, the number of samples for Trojan.Mdropper.X is through the roof. Usually, the case is that a malware family numbers [...]
Microsoft’s failure to spot the animated cursor bug in Windows Vista is, at best, a flag to hackers that old flaws may abound in the new operating system, researchers said Friday. At worst, it’s a disconcerting sign that Vista’s security-oriented development process slipped up. This week, Microsoft issued an out-of-cycle fix for a [...]
As I noted yesterday in my blog, there is a new patch that addresses the animated cursor vulnerability as noted in Security Bulletin MS07-017. This patch is prevents remote code execution (so an attacker can not take over your PC remotely) delivered via a malicious Web site or viewed via a bogus e-mail. [...]
Spam promising “Hot Pictures of Britiney Speers [sic]” is linking to sites hosting the Windows ANI exploit, Websense discovered today. The e-mail, coming from “Nude BritineySpeers.com,” is written in HTML and contains text that allows it to skirt anti-spam rules in the HTML comments. The come-on is from a server hosted in Russia [...]
Count a website touting racy photos of former pop diva Britney Spears as one of about 450 that are hosting the dangerous ANI exploit, patched on Tuesday by Microsoft in an emergency release. Spam, written in HTML to evade filters, arrives with the subject “Hot Pictures of Britiney Speers” and contains links leading [...]
Hace solo un par de días les comentaba sobre como utilizar Firekeeper detectar la vulnerabilidad de manejo de cursores animados que afecta a varias versiones de Windows, incluido Vista.Sobre la vulnerabilidad en cuestión, Alexander Sotirov, quien fue el que la descubrió, ha realizado en el día de ayer una demostración en la que se muestra que tanto IE7 como Firefox 2 son vulnerables. Pueden ver el video de la demostración a continuación:http://www.determina.com/security.research/flash/ani.htmlEsto radica en que Firefox utiliza el mismo componente de Windows para procesar los ficheros de cursores animados, por lo cual se pueden explotar en Firefox de la misma forma que en IE7. Aun peor, en Firefox se consigue acceso total al disco duro. En el caso de IE7 se pueden alterar los archivos de la carpeta de temporales de Internet, pero no el resto del disco ni los archivos de sistema ya que se ejecuta en un modo protegido de Microsoft. Aunque Symantec y otras compañías han asegurado
Author saw today via Alex, Milw0rm and Bugtraq that Andrea “bunker” Purificato has released a new exploit in DBMS_AQ.ENQUEUE for 10gR1, version 10.1.0.3.0. The [0-day] Remote Oracle DBMS_AQ.ENQUEUE exploit (10g) is written in Perl and the example uses a payload of granting ALL PRIVILEGES and DBA to the supplied Oracle user account.
Read more…
F-Secure corporation warns computer users of the recently discovered Windows Animated Cursor Handling vulnerability, also known as the ANI exploit. The exploit was first discovered on Friday. It is related to the cursor animation files used by Windows. Over the weekend the amount of attacks using this exploit have intensified. Majority of the [...]
A bug in Windows Vista’s built-in email program can be used by hackers to run malicious code on a victimised PC, according to a researcher who last month touted an exploit-for-sale service. Microsoft acknowledged the report, and says it is investigating the vulnerability. Symantec’s DeepSight network, which issued a warning about the vulnerability [...]
Talk about embarassing … Windows Vista can be taken down by a buffer overflow caused by a malformed animated cursor, such that it enters a crash-restart-crash loop. It’s not even a new exploit, as it was first reported by eEye in January 2005. At the time it was felt the exploit affected OSes [...]
