______________________________
____________________________________

 Insomnia Security Vulnerability Advisory: ISVA-100216.1
___________________________________________________________________

 Name: Windows URL Handling Vulnerability
 Released: 16 February 2010

 Vendor Link:
   http://www.microsoft.com/

 Affected Products:
   Windows 2000, Windows XP, Windows 2003, Windows Vista

 Original Advisory:
   http://www.insomniasec.com/advisories/ISVA-100216.1.htm

 Researcher:
   Brett Moore, Insomnia Security
   http://www.insomniasec.com
______________________________ ... Read more »
Views: 1300 | Added by: b1zz4rd | Date: 03 March 2010 | Comments (0)

# Greetz to all Darkc0de ,AI,ICW, AH Memebers
# Shoutz to r45c4l,j4ckh4x0r,silic0n,
smith,baltazar,d3hydr8,FB1H2S, lowlz,Eberly,Sumit,
#
# Author: Beenu Arora
#
# Home  : www.BeenuArora.com
#
# Email : beenudel1986@gmail.com
#
# Share the c0de!
#
################################################################
#
# Exploit: Multiple Stored XSS in XOOPS 2.4.4 Admin Section
#
# AppSite: www.xoops.org
#
# Tested Version : 2.4.4
#
# Request: POST
#
# Sample URLs:-http://localhost/xoops/htdocs/modules/system/admin/groupperm.php
# ... Read more »
Views: 1483 | Added by: b1zz4rd | Date: 03 March 2010 | Comments (0)

                  Virtual Security Research, LLC.
                     http://www.vsecurity.com/
                         Security Advisory


-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Advisory Name: Chrome Password Manager Cross Origin Weakness
 Release Date: 2010-02-15
 Application: Google Chrome Web Browser
    Versions: 4.0.249.78, 3.0.195.38, and likely earlier
    Severity: Medium/Low
      Author: Timothy D. Morgan <tmorgan (a) vsecurity . com>
Vendor Status: Update Released [2]
CVE Candidate: CVE-2010-0556
   Reference: ... Read more »
Views: 8590 | Added by: b1zz4rd | Date: 03 March 2010 | Comments (0)

Information disclosure vulnerability in Drupal's Realname User Reference
Widget contributed module (version 6.x-1.0)

Discovered by Martin Barbella <barbella@sas.upenn.edu>

Description of Vulnerability:
-----------------------------
Drupal is a free software package that allows an individual or a
community of users to easily publish, manage and organize a wide variety
of content on a website (http://drupal.org/about).

The Realname CCK User Reference Widget module adds a new widget to the
User Reference CCK field type that uses the Realnames for autocompletion
(http://drupal.org/project/realname_userreference).

Only the access content permission is needed to access the page which
displays the user names and real names for users, used by ... Read more »
Views: 8155 | Added by: b1zz4rd | Date: 03 March 2010 | Comments (0)



##############################
##################################
#       .___             __          _______       .___        #
#     __| _/____ _______|  | __ ____ \   _  \    __| _/____    #
#    / __ |\__  \\_  __ \  |/ // ___\/  /_\  \  / __ |/ __ \   #
#   / /_/ | / __ \|  | \/    <\  \___\  \_/   \/ /_/ \  ___/   #
#   \____ |(______/__|  |__|_ \\_____>\_____  /\_____|\____\   #
#        \/                  \/             \/     &nbs ... Read more »
Views: 1802 | Added by: b1zz4rd | Date: 03 March 2010 | Comments (1)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I expanded on Jon Butler's exploit and was able to inject a Meterpreter
payload into the remote process despite the buffer's small size (268
bytes).  This was done by overwriting the ret value with part of the
Meterpreter payload.

- - Explanation of Process:
http://paulmakowski.wordpress.com/2010/02/28/increasing-payload-size-w-return-address-overwrite/
- - Vulnerable Program:
http://easyftpsvr.googlecode.com/files/easyftpsvr-1.7.0.2.zip
- - Exploit Download:
https://tegosecurity.com/etc/return_overwrite/RCE_easy_ft ... Read more »
Views: 9485 | Added by: b1zz4rd | Date: 02 March 2010 | Comments (0)

==============================
===========
Yaniv Miron aka "Lament" Advisory Feb 24, 2010
ARISg5 (Version 5.0) Cross Site Scripting Vulnerability
=========================================

==========================================================================================
Application name: ARISg5 (arisglobal)
Version: 5.0
Class: Input Validation Error
Type: Cross Site Scripting (XSS)
Remote: Yes
Credit: Yaniv Miron aka "Lament"
Exploit:

http://SERVER_ADDRESS/Aris/wflogin.jsp?errmsg=Phishing Error Message<script>alert('Malicious XSS Code')</script>

Yaniv Miron aka "Lament".
lament@ilhack.org
==========================================================================================

================== ... Read more »
Views: 8377 | Added by: b1zz4rd | Date: 02 March 2010 | Comments (0)

------------------------------------------------------------------------
getPlus insufficient domain name validation vulnerability
------------------------------------------------------------------------
Yorick Koster, April 2009

------------------------------------------------------------------------
See also
------------------------------------------------------------------------
APSB10-08 [2] Security update available for Adobe Download Manager
CVE-2010-0189 [3]
02.23.10 [4] Multiple Vendor NOS Microsystems getPlus Downloader Input
Validation Vulnerability
Aviv Raff On .NET: [5] Skeletons in Adobe's security closet

------------------------------------------------------------------------
Tested version
------------------------------------------------------------------------
These vulnerabilities were tested on Adobe's version of ... Read more »
Views: 12254 | Added by: b1zz4rd | Date: 01 March 2010 | Comments (3)

# Title: [SQL injection vulnerability in WebAdministrator Lite CMS]
# Date: [25.02.2010]
# Author: [Ariko-Security]
# Software Link: [http://jskinternet.pl/]
# Version: [Lite]


============ { Ariko-Security - Advisory #5/2/2010 } =============

      SQL injection vulnerability in WebAdministrator Lite CMS



Vendor's Description of Software:
# http://jskinternet.pl/portal/jsk/3/Oferta.html

Dork:
# webadministrator lite

Application Info:
# Name: WebAdministrator Lite CMS
# Versions: LITE

Vulnerability Info:
# Type: SQL injection Vulnerability
# Risk: medium

Fix:
# N/A

Time Table:
# 25/02/2010 - Vendor notified.
# 25/02/2010 - Vendor response "we will not release FIX for LITE, soon

new version".... ... Read more »
Views: 1057 | Added by: b1zz4rd | Date: 01 March 2010 | Comments (0)

Hacktics Research Group Security Advisory
http://www.hacktics.com/#view=Resources%7CAdvisory

By Oren Hafif, Hacktics.
24-Feb-2010

===========
I. Overview
===========
During a penetration test performed by Hacktics' experts, certain
vulnerabilities were identified in an IBM Websphere Portal Server and Lotus
Web Content Management deployment. Further research has identified that the
login page of the IBM Lotus Workplace Web Content Management is vulnerable
to Reflected Cross Site Scripting attacks.

A friendly formatted version of this advisory is available in:
  http://www.hacktics.com/content/advisories/AdvIBM20100224.html

===============
II. The Finding
===============
An attacker can inject script into a ... Read more »
Views: 2711 | Added by: b1zz4rd | Date: 01 March 2010 | Comments (0)

« 1 2 3 4 5 ... 21 22 »
close