.::anti-abuse.com::.
Security Revealed
Archive for December, 2008
homebusiness-sql.txt
getaphpsite Home Business Directory suffers from a remote SQL injection vulnerability in directory.php.
cheats-sql.txt
getaphpsite Cheats suffers from remote SQL injection vulnerabilities in categories.php and view_reviews.php.
estore-sql.txt
getaphpsite e-store suffers from a remote SQL injection vulnerability in SearchResults.php.
topsites-sql.txt
getaphpsite Top Sites suffers from a remote SQL injection vulnerability in category.php.
phpcareers-upload.txt
getaphpsite PHP Careers Search suffers from a remote file/shell upload vulnerability.
apachesuphp-bypass.txt
Apache 1.x/2.x suphp bypass safe mode exploit that makes use of suPHP_ConfigPath.
Tim Callan’s SSL Blog: This morning’s MD5 attack – resolved
Tim Callan’s SSL Blog: This morning’s MD5 attack – resolved
Heise Security: 25C3 – More light shed on “denial of service” vulnerabilities in TCP
Hack A Day: 25C3 – Hackers completely break SSL using 200 PS3s
Laughing Man in Processing
The Laughing Man is the antagonist from the anime series Ghost in the Shell: Stand Alone Complex. During each of his public appearances in the series he manages to hack all video feeds/cyborg eyes in the vicinity to obscure his face with the logo above.
[Ben Kurtz] had been watching the series recently and realized he [...]
Ubuntu Ultimate 2.0 : Ubuntu 8.10 + Well Customized GNOME + Multimedia Codecs + KDE Goodies
After Ubuntu gained popularity, some distributions switched to Ubuntu as their base distribution. Also many new Ubuntu based distributions started to appear. Most of these can be categorized based on the following criteria…
SNES cartridge wallet
[gamemaster87] put together this SNES wallet. It isn’t just a wallet, it also has internal lighting and theme music. He harvested LEDs from Christmas lights, switches and battery compartments from an old all in one joystick, and the sounds from a holiday card. There’s a Plexiglas window to show off his ID and a belt [...]
How Linux admins can avoid common pitfalls
For many, migrating to Linux is a rite of passage that equates to a thing of joy. For others, it’s a nightmare waiting to happen. It’s wonderful when it’s the former; it’s a real show stopper when it’s the latter. But that nightmare doesn’t have to happen, especially when you know, first hand, the most common mistakes new Linux administrators make. This article will help you avoid those mistakes by laying out the most typical Linux missteps.
PHP gd Library imageRotate() Function Information Leak Vulnerability
PHP is a popular web programming language which is normally used as a script engine in the server side. PHP 5 which is compiled with gd library, includes a function called imageRotate() for rotatin…
Trend Micro HouseCall “notifyOnLoadNative()” Vulnerability
“Trend Micro HouseCall is an application for checking whether your computer has been infected by viruses, spyware, or other malware. HouseCall performs additional security checks to identify and fi…
Citrix Broadcast Server login.asp SQL Injection
The Citrix Broadcast Server administrative login page is vulnerable to trivial SQL injections via the txtUID HTTP POST parameter. An attacker could leverage this flaw to obtain unauthorized access…
Torvalds’ gift for the Linux community… The new Kernel 2.6.28
Actually, it was on the 25th of December. Linus Torvalds played Santa Claus and released a gift for all Linux users. It’s the New Kernel. Let’s take a closer look to this new piece of art.
Bugtraq: MD5 Considered Harmful Today: Creating a rogue CA certificate
MD5 Considered Harmful Today: Creating a rogue CA certificate
Bugtraq: Re: php-nuke 8.0 module sections artid blind sql inj vuln.
Re: php-nuke 8.0 module sections artid blind sql inj vuln.
Bugtraq: apache 1.x 2.x suphp (suPHP_ConfigPath) bypass safe mode exploit
apache 1.x <=> 2.x suphp (suPHP_ConfigPath) bypass safe mode exploit
Bugtraq: CFP uCon Security Conference 2009 – Recife, Brazil
CFP uCon Security Conference 2009 – Recife, Brazil
Home made Macintosh for under $240
[Steve] sent in this great step by step writeup on how to load Macintosh OSX onto an MSI wind. The MSI wind can be found pretty cheap, roughly $140. It has a 1.2Ghz Atom processor, SATA, and 6 USB ports. Its a pretty decent system for the price. Add a hard drive, DVD ROM and [...]
Advertisments
Popular Tags
Recent Entries
- 6 Reasons Why Windows 8 Tablets Are Not A Threat To Android
- Adventures in Self-Publishing, Ch. 9: How to Price your Book – and Does it Matter?
- U.S. Government, Military To Get Secure Android Phones
- Anonymous Continues Attacks On Brazilian Financial Sites
- FBI Probes Anonymous Intercept Of US-UK Hacking Call
- DNS Service Oriented DoS / DDoS Attacks
- Analysis Of A MIDI Remote Code Execution Vulnerability
- Infocon: green
- How to create facebook application using PHP and graph api
- Wine 1.4-rc2 released
Recent Comments
- Keine Kommentare vorhanden.
Social Network
| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « Nov | Jan » | |||||
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 | 31 | ||||
Subscribes
Meta
Archives
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- August 2005
- July 2005
- June 2005
- May 2005
- January 2005
- November 2004
- October 2004
- September 2004
- October 2002
- December 2001
- January 1970
- December 1969
Also
rss
- SANS Internet Storm Center, InfoCON: green
- SANS Internet Storm Center, InfoCON: green
- (IN)SECURE Magazine Notifications RSS
- 0DayCar
- A Day in the Life of an Information Security Investigator
- Advisory Files ≈ Packet Storm
- Advisory Files ≈ Packet Storm
- All about Linux
- All about Linux
- AlterNet.org
- AlterNet.org
- Astalavista.net – Directory
- Astalavista.net – Exploits
- cmw.me blogs
- Confessions of a Penetration Tester
- Darknet – The Darkside
- Darknet – The Darkside
- Debian GNU/Linux System Administration Resources
- Debian GNU/Linux System Administration Resources
- DesktopLinux.com
- DesktopLinux.com
- Exploit Files ≈ Packet Storm
- Exploit Files ≈ Packet Storm
- F-Secure Antivirus Research Weblog
- F-Secure Antivirus Research Weblog
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Got Root Articles
- Got Root Articles
- Got Root Blogs
- Got Root Blogs
- Got Root Library and Wiki
- Got Root Library and Wiki
- Hack a Day
- Hack a Day
- HowtoForge – Linux Howtos and Tutorials –
- HowtoForge – Linux Howtos and Tutorials –
- izik
- izik
- Joomla! powered Site
- kaos.theory: fractal blog
- kaos.theory: fractal blog
- Latest Secunia Advisories
- Librenix.com | Linux Sysadmin Central
- Librenix.com | Linux Sysadmin Central
- Linux Gazette
- Linux Gazette
- Linux Journal – The Original Magazine of the Linux Community
- Linux Journal – The Original Magazine of the Linux Community
- Linux.com :: Feature
- Linux.com :: Feature
- LXer Linux News
- LXer Linux News
- milw0rm.com
- milw0rm.com
- News ≈ Packet Storm
- News ≈ Packet Storm
- nixCraft Linux Sys Admin Blog
- nixCraft Linux Sys Admin Blog
- Open Source Networking
- Open Source Networking
- Own-the.net – Web application security and SEO
- RootPrompt — Nothing but Unix
- RootPrompt — Nothing but Unix
- Rootsecure.net
- Rootsecure.net
- SecuriTeam
- SecuriTeam
- Security Tool Files ≈ Packet Storm
- Security Tool Files ≈ Packet Storm
- SecurityDocs
- SecurityDOT Articles
- SecurityDOT Articles
- SecurityDOT Exploits
- SecurityDOT Exploits
- SecurityDot News
- SecurityDot News
- SecurityDot Vulnerabilities
- SecurityDot Vulnerabilities
- SecurityFocus News
- SecurityFocus News
- SecurityFocus Vulnerabilities
- SecurityFocus Vulnerabilities
- SpiderLabs Anterior
- SpiderLabs Anterior
- Spyware Warrior
- Spyware Warrior
- TaoSecurity
- TaoSecurity
- TechCrunch
- The Ethical Hacker Network RSS News Feed
- The Ethical Hacker Network RSS News Feed
- The most recent articles from vnunet.com
- The most recent articles from vnunet.com
- US-CERT Cyber Security Alerts
- US-CERT Cyber Security Alerts
- US-CERT Cyber Security Bulletins
- US-CERT Cyber Security Bulletins
- US-CERT Cyber Security Tips
- US-CERT Cyber Security Tips
- US-CERT Technical Cyber Security Alerts
- US-CERT Technical Cyber Security Alerts
- VulnWatch
- VulnWatch
- XSSed syndication
- XSSed syndication
- XSSed syndication
- XSSed syndication