- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: eCryptfs 'parse_tag_3_packet()' Packet Heap Based Buffer Overflow Vulnerability
- Vuln: Cisco VPN Client for Windows 'StartServiceCtrlDispatche' Local Denial of Service Vulnerability
- Vuln: HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
- Vuln: PHP Versions Prior to 5.3.1 Multiple Vulnerabilities
- Vuln: KDE KDELibs 'dtoa()' Remote Code Execution Vulnerability
- Vuln: PEAR Sendmail 'From' Parameter Arbitrary Argument Injection Vulnerability
- Vuln: IBM Rational Products Multiple Cross Site Scripting Vulnerabilities
- Vuln: Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
Search
Search Result
-
Best of Application Security (Friday, Nov. 20)
Category: Network Security & Hacking News/Latest Security News
... Reversing JavaScript Shellcode: A Step By Step How-To Brute-Forcing Compatibility Preventing Security Development Errors: Lessons Learned at Windows Live by Using ASP.NET MVC OWASP Board - Election Results ...Friday, 20 November 2009 -
Curiosity as a Malicious PDF
Category: Network Security & Hacking News/Global Security News
... about piracy off the coast of East Africa. But behind the scenes, sinister things occur. The malicious PDF runs some JavaScript that exploits the Adobe Collab overflow (CVE-2007-5659) and Adobe getIcon ...Friday, 20 November 2009 -
Fake Blogs Lead to FAKEAV
Category: Network Security & Hacking News/Latest Security News
... as TROJ_FAKEAV.FFGZ. The JavaScript file that is used by the fake blogs is detected as JS_FRAUDLOAD.AP. The domains or actual FAKEAV drop sites involved in this attack are already blocked ...Wednesday, 18 November 2009 -
Interesting Information Security Bits for 11/17/2009
Category: Network Security & Hacking News/Latest Security News
... some Javascript shellcode. Good stuff! Paul Melson’s Blog: Reversing JavaScript Shellcode: A Step By Step How-To Tags: ( reverse-engineering javascript shellcode ) The Offensive Security Exploit ...Tuesday, 17 November 2009 -
Vuln: Prototype JavaScript Framework Cross-Site Ajax Request Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Prototype JavaScript Framework Cross-Site Ajax Request Vulnerability Read Full Article ...Wednesday, 04 November 2009 -
Object-Oriented JavaScript: Create scalable, reusable high-quality JavaScript applications and libraries (Paperback) newly tagged "programming"
Category: Network Security & Hacking Products/Programming
Object-Oriented JavaScript: Create scalable, reusable high-quality JavaScript applications and libraries (Paperback) By Stoyan Stefanov Buy new: $31.64 Customer Rating: ...Sunday, 01 November 2009 -
Mozilla update repairs Firefox buffer overflow vulnerabilities
Category: Network Security & Hacking News/Latest Security News
... in a variety of browser functions. Mozilla repaired four critical memory corruption errors affecting the browser engine and the JavaScript engine. In its advisory, Mozilla said some of the errors could ...Thursday, 29 October 2009 -
Vuln: Mozilla Firefox JavaScript Web-Workers Remote Code Execution Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox JavaScript Web-Workers Remote Code Execution Vulnerability Read Full Article ...Tuesday, 27 October 2009 -
Review of Hacking Exposed: Web 2.0 Posted
Category: Network Security & Hacking News/Latest Security News
... when I was already reading snippets mentioning JavaScript arrays in the introduction. That set the tone for the book: compressed, probably rushed, mixing material of differing levels of difficulty. For ...Monday, 26 October 2009 -
Vuln: Adobe Reader and Acrobat JavaScript Memory Corruption Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Adobe Reader and Acrobat JavaScript Memory Corruption Vulnerability Read Full Article ...Sunday, 25 October 2009 -
VanMorrison.com Iframe
Category: Network Security & Hacking News/Latest Security News
... up. I haven't yet learned javascript deobfuscation but that didn't look like good stuff was happening. So I took a sacrificial lamb system. (still dangerous don't try this at home). And went ...Wednesday, 21 October 2009 -
ha.ckers: JavaScript Protocol Comment Newline Injection
Category: Network Security & Hacking News/Latest Security News
ha.ckers: JavaScript Protocol Comment Newline Injection ha.ckers: JavaScript Protocol Comment Newline Injection Read Full Article ...Wednesday, 14 October 2009 -
Obama Nobel Prize Spam Links to Malware and Drive-By
Category: Network Security & Hacking News/Global Security News
... do not want, there is an extra bit of fun embedded within this page. Located at the bottom of the page is a little snippet of encoded Javascript that looks like this: Decoding this Javascript reveals ...Wednesday, 14 October 2009 -
Drive By: Adobe recommends disabling JavaScript to avoid PDF hack attack
Category: Network Security & Hacking News/Latest Security News
From Computer Weekly: Users of Adobe Reader should disable JavaScript to avoid a zero-day hacking attack on the PDF document reader software. This is the latest in a series of major security holes in the ...Wednesday, 14 October 2009 -
Vuln: Adobe Reader and Acrobat JavaScript Collab Object Memory Corruption Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Adobe Reader and Acrobat JavaScript Collab Object Memory Corruption Vulnerability Read Full Article ...Tuesday, 13 October 2009 -
Latest PDF Zero Day Leads to Exploit Egg Hunt
Category: Network Security & Hacking News/Global Security News
... to code execution when a victim simply reads a malicious PDF document. This JavaScript code is viewable only if the stream had been unpacked, as can be seen Client-side exploitation continues to ...Tuesday, 13 October 2009 -
Using Firebug to Beat Poor Web Development
Category: Network Security & Hacking News/Latest Security News
... your Order' and view the item in your cart. So in the end, remember developers that your HTML and JavaScript exist on the client side, meaning that once it's rendered in their browser... users can manipulate ...Monday, 12 October 2009 -
Show Me the Malware!
Category: Network Security & Hacking News/Global Security News
... HTML tags, JavaScript, or embedded Flash files — are available in the "Malware details" Labs feature in Webmaster Tools. Registered webmasters (registration is free) of infected sites do not need to specially ...Monday, 12 October 2009 -
Mozilla pushes out update, provides security suite add-ons
Category: Network Security & Hacking News/Latest Security News
... allow an attacker to run malicious code on a victim’s computer. In addition a critical error in FeedWriter could be used by an attacker to run JavaScript code from Web content with elevated privileges, ...Monday, 12 October 2009 -
New Adobe Zero-Day Exploit
Category: Network Security & Hacking News/Latest Security News
... This .PDF file contains an embedded JavaScript, which Trend Micro detects as JS_AGENTT.DT. This JavaScript is used to execute arbitrary codes in a technique known Post from: TrendLabs | Malware Blog ...Friday, 09 October 2009 -
All about Website Password Policies
Category: Network Security & Hacking News/Latest Security News
... are several freely available JavaScript libraries that developers may use to implement this feature. Normalization When passwords are entered, any number of user errors may occur that prevent them from ...Wednesday, 07 October 2009 -
Hacking the Linksys WRT54G Router #2
Category: Network Security & Hacking Articles/Legacy Security Articles
... in HTML and submitted using JavaScript. Please refer to the bottom of this text for my previous findings and the demo page with sample exploits. ++| Let's Get Dirty ---------------------- You may find ...Saturday, 03 October 2009 -
Frequently Asked Computer Security Questions
Category: Network Security & Hacking Articles/Legacy Security Articles
... can execute the virus by clicking on an encoded message that contains embedded executable code such as JavaScript within an HTML email message, or an executable file attachment. Another type of program ...Saturday, 03 October 2009 -
Hacking CGI - Security And Exploitation
Category: Network Security & Hacking Articles/Legacy Security Articles
... your visits. Cookies can also be left to javascript or html meta tags. But you should be aware that perl can set cookies (using HTTP Set-Cookie header), and that data can be sent to a script in the form ...Saturday, 03 October 2009 -
Penetration Testing for Web Applications
Category: Network Security & Hacking Articles/Legacy Security Articles
... Visual Studio 7.0" name="GENERATOR"> <meta content="C#" name="CODE_LANGUAGE"> <meta content="JavaScript" name="vs_defaultClientScript"> In this situation, the developer appears to be ...Saturday, 03 October 2009 -
Hacking With Javascript
Category: Network Security & Hacking Articles/Legacy Security Articles
-things to come: example of stealing info from users (anti-virus programs and trojans), story of ciru cookie stealing from acanium, ThePull's javascript exploits, and the about:// exploit. Since so ...Saturday, 03 October 2009 -
How to be Anonymous on the Internet
Category: Network Security & Hacking Articles/Legacy Security Articles
... the only info a Web site can sniff out is your ISP's address and geographical location. Also Java and JavaScript applets can take control of your browser unexpectedly, and if you are surfing to unknown ...Saturday, 03 October 2009 -
Stealing PII is so 2007. They want your endpoint.
Category: Network Security & Hacking News/Latest Security News
... used to conduct online business. A known set of software required for business should be running. The machine should not be used for email. An up to date browser should be used with no plugins. JavaScript ...Thursday, 01 October 2009 -
Interesting Information Security Bits for 09/21/2009
Category: Network Security & Hacking News/Latest Security News
... on JavaScript exploits. Good stuff. Developing Security: Crossing the Border JavaScript Exploits Tags: ( javascript ) A nice article by Dancho talking about scareware. The Good afternoon everybody! ...Monday, 21 September 2009 -
Scriptin' with JavaScript and Ajax: A Designer's Guide (Voices That Matter) (Paperback) newly tagged "programming"
Category: Network Security & Hacking Products/Programming
Scriptin' with JavaScript and Ajax: A Designer's Guide (Voices That Matter) (Paperback) By Charles Wyke-Smith Buy new: $29.69 50 used and new from $25.66 Customer Rating: ...Saturday, 05 September 2009 -
Learning PHP, MySQL, and JavaScript: A Step-by-Step Guide to Creating Dynamic Websites (Animal Guide) (Paperback) newly tagged "databases"
Category: Network Security & Hacking Products/Databases
Learning PHP, MySQL, and JavaScript: A Step-by-Step Guide to Creating Dynamic Websites (Animal Guide) (Paperback) By Robin Nixon Buy new: $26.40 34 used and new from $20.90 ...Saturday, 01 August 2009 -
Javascript Styling
Category: Tabbed Content/Tabs
One of the many new features in the template is the inclusion of javsascript powered styling for radio icons and checkboxes, such as the ones used on the Polls and the Search pages. Traditionally, styling ...Friday, 29 May 2009
