logo

exploiting

Category: tools | Posted by Avatar Staff 302 days ago
Via: http://blog.metasploit.com | Tags: Exploiting the ANI vulnerability on Vista comments Discuss  
There's been some discussion going around about whether or not it's really possible to use the ANI vulnerability to execute arbitrary code on Vista. If you aren't familiar with the ANI vulnerability, go check out another great bit of work from Determina's Alexander Sotirov. HD Moore wrote the first Metasploit module for this on Friday night and we continued to improve the exploit (and add a second SMTP module) over the weekend. These modules include a default target that is able to hit both XP and Vista. read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 299 days ago
Via: http://www.uninformed.org | Tags: exploiting wireless driver vulnerabilities on windows comments Discuss  
This paper describes the process of identifying and exploiting 802.11 wireless device driver vulnerabilities on Windows. This process is described in terms of two steps: pre-exploitation and exploitation. read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 299 days ago
Via: http://uninformed.org | Tags: exploiting the otherwise nonexploitable on windows comments Discuss  
This paper describes a technique that can be applied in certain situations to gain arbitrary code execution through software bugs that would not otherwise be exploitable, such ... read more »
addto Add this link to... report Bury 
Category: vulnerabilities | Posted by Avatar Staff 295 days ago
Via: http://www.symantec.com | Tags: phishing attacks exploiting injection flaws importance application security comments Discuss  
As discussed in the past, cross site scripting (XSS) can be exploited by phishers to build really effective attacks. Today we have analyzed another similar attack that includes some enhanced features. The attack was exploiting an injection flaw in an Internet banking application, specifically located in the module used to display warning messages to users. The function took a single GET parameter: https://www.well-known-bank.com/popup.asp?msg=[ASCII_encoded_message_to_display] And then returned a page read more »
addto Add this link to... report Bury 
Category: blogs | Posted by Avatar Staff 284 days ago
Via: http://blog.washingtonpost.com | Tags: hackers exploiting facebook myspace plugins comments Discuss  
If you use Internet Explorer (versions 6 or 7) to browse the Web, listen up: Criminals are starting to exploit security holes in several widely installed IE plug-ins to plant invasive software when users are coerced or tricked into visiting one of several Web sites. In an alert posted Friday evening, security software vendor Symantec said it is seeing malicious Web sites popping up trying to exploit vulnerabilities in a set of ActiveX controls produced...Please click on the title to continue reading this e read more »
addto Add this link to... report Bury 
Category: blogs | Posted by Avatar Staff 237 days ago
Via: http://www.symantec.com | Tags: attempt exploiting latest gdi vulnerability wild comments Discuss  
It has been less than two days since Microsoft announced a couple of vulnerabilities in graphics device interface (GDI) EMF formatted images, but our DeepSight honeypots are already showing some signs of exploitation in the wild. Although the exploits that we have seen so far do not yet appear to be functional, they appear to have the right general idea in their exploitation. It is possible that these exploits either have been leaked and are "in-work" copies, or that they are functional on some platform th read more »
addto Add this link to... report Bury 
Category: blogs | Posted by Avatar Staff 149 days ago
Via: http://blog.washingtonpost.com | Tags: microsoft hackers exploiting unpatched office flaw comments Discuss  
Microsoft today issued stopgap instructions for plugging a previously unknown security hole that hackers are currently using to break into Windows computers via the Internet Explorer (IE) Web browser. The problem, once again, is with a faulty ActiveX control. ActiveX is a Windows technology that works through IE and allows Web sites to add software to the user's computer or interact with components in the Windows operating system. In this case, the insecure component is...Please click on the title to conti read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 51 days ago
Via: http://www.uninformed.org | Tags: exploiting tomorrows internet today penetration testing ipv comments Discuss  
This paper illustrates how IPv6-enabled systems with link-local and auto-configured addresses can be compromised using existing security tools. While most of the techniques described can apply to "real" IPv6 networks, the focus of this paper is to target IPv6-enabled systems on the local network. read more »
addto Add this link to... report Bury 
Category: blogs | Posted by Avatar Staff 40 days ago
Via: http://voices.washingtonpost.com | Tags: datastealing trojan exploiting justpatched windows flaw comments Discuss  
Microsoft Windows users who have not yet applied the security update that Redmond released yesterday should take a minute to do that now: Security experts are warning that at least one Trojan horse program with apparent spreading capabilities is in circulation, and that we are likely to see additional malware exploiting the flaw in the coming days. The ThreatExpert Blog has the skinny on Gimmiv.A, a Trojan that appears to have worm-like ability to spread...Please click on the title to continue reading this read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 29 days ago
Via: http://lists.jammed.com | Tags: isn worm exploiting microsoft windows server spotted comments Discuss  
From: InfoSec News <alerts_at_private>Date: Tue, 4 Nov 2008 00:19:22 -0600 (CST)http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=212000278By Thomas ClaburnInformationWeekNovember 3, 2008 A worm designed to exploit the recently patched vulnerability covered in Microsoft (NSDQ: MSFT) Security Bulletin MS08-067 has been detected, US-CERT, the government's cyber security organization, warned Monday.Just over a week ago, Microsoft issued MS08-067 as an out-of-band p read more »
addto Add this link to... report Bury