We’ve previously shown screenshots of document files used in targeted espionage attacks. Most often, those have been PDF files, as they are the most commonly used filetype in such attacks.But here’s a fresh set of attacks done with XLS files in…
.::anti-abuse.com::.
Security Revealed
Archive for June, 2010
The Case of TDL3
Posted in June 30th, 2010
Ace from our Kuala Lumpur lab has written a technical white paper on the internals of the highly advanced TDL3 trojan. The paper goes deep into the features of this advanced backdoor/rootkit.You can download “The Case of Trojan DownLoader TDL3″…
Comments Off
jornaldigital-sql.txt
Posted in June 30th, 2010
Jornal Digital suffers from a remote SQL injection vulnerability.
Comments Off
mohachat-xss.txt
Posted in June 30th, 2010
MOHA Chat version 0.1.1 suffers from a cross site scripting vulnerability.
Comments Off
www.punjab-zameen.gov.pk XSS
Posted in June 30th, 2010
Prashant Uniyal has discovered a vulnerability in www.punjab-zameen.gov.pk, which could be exploited by malicious people to conduct XSS attacks.
Comments Off
www.ddws.nic.in XSS
Posted in June 30th, 2010
Prashant Uniyal has discovered a vulnerability in www.ddws.nic.in, which could be exploited by malicious people to conduct XSS attacks.
Comments Off
hseep.dhs.gov Script Insertion
Posted in June 30th, 2010
Zeitjak has discovered a vulnerability in hseep.dhs.gov, which could be exploited by malicious people to conduct Script Insertion attacks.
Comments Off
Cross Compiling Qt
Posted in June 30th, 2010
On of the great aspects of Qt is that it is cross platform. Not only across desktops, but also across devices. The Qt make tool, qmake, can be configured to cross compile for different architect…
Comments Off
New project leader wears the Fedora
Posted in June 30th, 2010
Paul Frields, who has been getting his paycheck from Red Hat to run the Fedora development Linux variant since 2008, is moving back inside the company to work on Enterprise Linux, and an outsider named Jared Smith is being brought in as the new Fedora …
Comments Off
Sniper: Ghost Warrior (2010/ENG)
Posted in June 30th, 2010
As a Ghost Warrior, an elite sniper in a highly trained special ops unit, your unique skills in the art of stalking, target detection, surveillance and shooting accuracy will determine mission success.The current government of a US backed small-island nation has been overthrown by a hostile military regime and your specialized sniping skills are needed to bring order back to the small island
Comments Off
F-Secure PC Booster Beta
Posted in June 30th, 2010
We have a beta of a new product available for download on our beta pages. F-Secure PC Booster optimizes the performance of your Windows computer and cleans up old junk.Try it out! We’d love to hear your feedback on the new product. On 29/06…
Comments Off
MeeGo tablet unveiled in China
Posted in June 30th, 2010
Red Flag Software has demonstrated a 10.1-inch tablet running its new MeeGo Linux version of Midinux 3.0 on an Intel Moorestown Z6xx processor, says Tech.qq. Equipped with Wi-Fi and 3G, the NPad tablet will go on sale in the third quarter, says the rep…
Comments Off
Vuln: Mozilla Firefox and SeaMonkey Plugin Object Reference Remote Code Execution Vulnerability
Posted in June 30th, 2010
Mozilla Firefox and SeaMonkey Plugin Object Reference Remote Code Execution Vulnerability
Comments Off
Vuln: Mozilla Firefox ‘jstracer.cpp’ Memory Corruption Vulnerability
Posted in June 30th, 2010
Mozilla Firefox ‘jstracer.cpp’ Memory Corruption Vulnerability
Comments Off
Realtime Landscaping Architect 2.06
Posted in June 30th, 2010
Realtime Landscaping Architect includes everything you need to design professional landscape plans and presentations.Create photo-based designs, plan drawings, and even full 3D walkthroughs with this easy-to-use software. No prior CAD experience is required.Design Landscape PlansDesign houses, decks, fencing, yards, gardens, swimming pools, water features, and much more with easy-to-use tools.
Comments Off
Nitro PDF Professional 6.1.2.1 (x86 / x64)
Posted in June 30th, 2010
Nitro PDF® Professional gives business professionals the complete, affordable and easy-to-use set of tools to work with PDF documents.Nitro PDF Professional, the complete Adobe® Acrobat® alternative, enables you to do more with PDF through powerful tools to create, convert, edit, combine, secure, annotate, form-fill, and save 100% industry-standard PDF files. Recipient of multiple best product
Comments Off
bbpress-xsrf.txt
Posted in June 30th, 2010
bbPress version 1.0.2 suffers from a cross site request forgery vulnerability.
Comments Off
Like Experimenting With Your Desktop? Try Ubuntu Sugar Remix
Posted in June 30th, 2010
Sugar desktop environment was originally conceptualized to become the default desktop for OLPC (One Laptop Per Child) project. Sugar desktop is designed with the goal of being used by children for learning. The original Sugar desktop environment was re…
Comments Off
Google Chrome Set To Follow Firefox In Blocking Out-of-date Plug-ins
Posted in June 30th, 2010
by admin in browser-security, chrome plug-in security, chrome security, Countermeasures, Exploits/Vulnerabilities, google chrome security, google-chrome, hacking web browsers, plug-in security, plug-ins, rss, web browser security, Web Hacking
It’s good news to see that Google is taking security issues seriously when it comes to its Chrome browser. This has been shown before when Google was Willing To Pay Bounty For Chrome Browser Bugs. And well honestly, we haven’t had a lot of …
Comments Off
Security Updates for Adobe Reader and Acrobat
Posted in June 30th, 2010
Earlier this month, Adobe addressed a vulnerability issue that affects three products: Flash Player, Reader and Acrobat. While the Flash Player issue was fixed rather quickly, refer to Adobe Flash Player 10.1.53.64 Security Update, the latter t…
Comments Off
Bugtraq: Secunia Research: TaskFreak "tznMessage" Cross-Site Scripting Vulnerability
Posted in June 30th, 2010
Secunia Research: TaskFreak "tznMessage" Cross-Site Scripting Vulnerability
Comments Off
kryn-xssxsrf.txt
Posted in June 30th, 2010
Kryn CMS versions 0.6 and below suffer from cross site request forgery and cross site scripting vulnerabilities.
Comments Off
ZSL-2010-4943.txt
Posted in June 30th, 2010
Adobe Reader suffers from a remote memory corruption vulnerability that causes the application to crash while processing the malicious .PDF file. The issue is triggered when the reader tries to initialize the CoolType Typography Engine (cooltype.dll). …
Comments Off
Vuln: LiteSpeed Web Server Source Code Information Disclosure Vulnerability
Posted in June 30th, 2010
LiteSpeed Web Server Source Code Information Disclosure Vulnerability
Comments Off
Driver Checker 2.7.4.20100628
Posted in June 30th, 2010
Manage Your Windows Drivers with Ease.Driver Checker can deep scan your hardware devices, detect and update the outdated drivers if available, completely backup them and restore them if necessarily; You can also uninstall the drivers completely on demand. Driver Checker does all of these through the easy-to-use interface and makes your system running more secure, stable and always up-to-date.
Comments Off
Spy Emergency 8.0.195.0
Posted in June 30th, 2010
Spy Emergency integrates newest technologies for fighting spyware, viruses and spam into one single product.Would not it be nice if you did not have to worry about spyware, adware, spam and viruses on your PC, no ugly popups, no PC slowdown? Download for Free our AntiSpyware, AntiVirus and AntiSpam product and be protected now.Spy Emergency combines anti-spyware, anti-virus and anti-spam security
Comments Off
xplico-0.5.8.tgz
Posted in June 30th, 2010
Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams, etc. This is the version that has a GUI allowing yo…
Comments Off
overflow-tutorialii.txt
Posted in June 30th, 2010
Whitepaper called Linux Buffer Overflow Tutorial II. Written in Indonesian.
Comments Off
Advertisments
Popular Tags
Recent Entries
- Mandriva Linux released to Community
- Infocon: green
- Mandriva Becomes A Community Distribution
- ISC StormCast for Monday, May 21st 2012 http://isc.sans.edu/podcastdetail.html?id=2548, (Mon, May 21st)
- Ubuntu more “commercial”, but always free …
- The Story Behind Payment Disruptor Stripe.com And Its Founder Patrick Collison
- Lightspark For Open Flash Inches Forward
- Silicon Valley Can Do Better Than Facebook
- The pi pad
- Labor Struggles, Then and Now: Workers in One Iowa Town Epitomize the Past and Present of the Labor Movement
Recent Comments
- Keine Kommentare vorhanden.
Social Network
| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « May | Jul » | |||||
| 1 | 2 | 3 | 4 | 5 | 6 | |
| 7 | 8 | 9 | 10 | 11 | 12 | 13 |
| 14 | 15 | 16 | 17 | 18 | 19 | 20 |
| 21 | 22 | 23 | 24 | 25 | 26 | 27 |
| 28 | 29 | 30 | ||||
Subscribes
Meta
Archives
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- August 2005
- July 2005
- June 2005
- May 2005
- January 2005
- November 2004
- October 2004
- September 2004
- October 2002
- December 2001
- January 1970
- December 1969
Also
rss
- SANS Internet Storm Center, InfoCON: green
- SANS Internet Storm Center, InfoCON: green
- (IN)SECURE Magazine Notifications RSS
- 0DayCar
- A Day in the Life of an Information Security Investigator
- Advisory Files ≈ Packet Storm
- Advisory Files ≈ Packet Storm
- All about Linux
- All about Linux
- AlterNet.org
- AlterNet.org
- Astalavista.net – Directory
- Astalavista.net – Exploits
- cmw.me blogs
- Confessions of a Penetration Tester
- Darknet – The Darkside
- Darknet – The Darkside
- Debian GNU/Linux System Administration Resources
- Debian GNU/Linux System Administration Resources
- DesktopLinux.com
- DesktopLinux.com
- Exploit Files ≈ Packet Storm
- Exploit Files ≈ Packet Storm
- F-Secure Antivirus Research Weblog
- F-Secure Antivirus Research Weblog
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Got Root Articles
- Got Root Articles
- Got Root Blogs
- Got Root Blogs
- Got Root Library and Wiki
- Got Root Library and Wiki
- Hack a Day
- Hack a Day
- HowtoForge – Linux Howtos and Tutorials –
- HowtoForge – Linux Howtos and Tutorials –
- izik
- izik
- Joomla! powered Site
- kaos.theory: fractal blog
- kaos.theory: fractal blog
- Latest Secunia Advisories
- Librenix.com | Linux Sysadmin Central
- Librenix.com | Linux Sysadmin Central
- Linux Gazette
- Linux Gazette
- Linux Journal – The Original Magazine of the Linux Community
- Linux Journal – The Original Magazine of the Linux Community
- Linux.com :: Feature
- Linux.com :: Feature
- LXer Linux News
- LXer Linux News
- milw0rm.com
- milw0rm.com
- News ≈ Packet Storm
- News ≈ Packet Storm
- nixCraft Linux Sys Admin Blog
- nixCraft Linux Sys Admin Blog
- Open Source Networking
- Open Source Networking
- Own-the.net – Web application security and SEO
- RootPrompt — Nothing but Unix
- RootPrompt — Nothing but Unix
- Rootsecure.net
- Rootsecure.net
- SecuriTeam
- SecuriTeam
- Security Tool Files ≈ Packet Storm
- Security Tool Files ≈ Packet Storm
- SecurityDocs
- SecurityDOT Articles
- SecurityDOT Articles
- SecurityDOT Exploits
- SecurityDOT Exploits
- SecurityDot News
- SecurityDot News
- SecurityDot Vulnerabilities
- SecurityDot Vulnerabilities
- SecurityFocus News
- SecurityFocus News
- SecurityFocus Vulnerabilities
- SecurityFocus Vulnerabilities
- SpiderLabs Anterior
- SpiderLabs Anterior
- Spyware Warrior
- Spyware Warrior
- TaoSecurity
- TaoSecurity
- TechCrunch
- The Ethical Hacker Network RSS News Feed
- The Ethical Hacker Network RSS News Feed
- The most recent articles from vnunet.com
- The most recent articles from vnunet.com
- US-CERT Bulletins
- US-CERT Bulletins
- US-CERT Technical Cyber Security Alerts
- US-CERT Technical Cyber Security Alerts
- US-CERT Technical Cyber Security Alerts
- US-CERT Technical Cyber Security Alerts
- US-CERT Tips
- US-CERT Tips
- VulnWatch
- VulnWatch
- XSSed syndication
- XSSed syndication
- XSSed syndication
- XSSed syndication