Posts Tagged ‘Exploit’

Multiple vulnerabilities in Cisco Video Surveillance Operations Manager

Video conferencing is now becoming a flexible way to have meeting over internet and some magazines are using these systems to record all activities at their shops. this way to track any violation or a problem in their markets. An exploit has been published for the Cisco Video Surveillance Operations Manager version 6.3.2 that allow an [...]

Share
android_logo

Stealing Sensitive Data From Android Devices

Android is now widely used all over the world, this is due to possibility for installing free applications and not expensive device prices, but on the other hand there are a lot of vulnerabilities that are discovered on a daily bases. Some of these vulnerabilities are fixed but others are still working. There are an [...]

Share

CSRF Exploit for Joomla 1.6.3 or Lower

New exploit has been published that are targeting Joomla 1.6.3 or lower version the vulnerability  allow an attacker to create a specially crafted URL that would execute arbitrary script code on  victim’s browser. Cross-site request (XSRF or CSRF) is a web application attack that uses the existing trust relationship between web applications and authenticated users [...]

Share

Blind SQL Injection in Joomla! com_virtuemart <= v1.1.7

One more time Joomla provide us a new vulnerability in one of thier component. This time the vulnerability exists in VirtueMart which is an Open Source E-Commerce solution that can be used together with a Joomla Content Management System (CMS). Steven Seeley & Rocco Calvi from startsec detected the possibility of Blind SQL injection in [...]

Share

Critical Windows Remote Vulnerability Exploit

A new post has been released yesterday providing a script to exploit a critical vulnerability in windows, the vulnerability has been discovered since the 7th of September. Up to this Monday the vulnerability can lead only to a failure in the system but now and after Stephen Fewer from Metasploit issued this script publicly it [...]

Share

IIS exploit in-the-wild

Proof-of-concept code was posted on Monday that can lead to gain a full control over server running Microsoft IIS. This vulnerability can be serious for webmasters but the attack can only be successful against old versions of IIS (IIS5, IIS6). The bug is particularly concern the FTP service which is an IIS component that used [...]

Share

Goodbye Milw0rm!

I know this may seem like a lot to do, but let’s face it, milw0rm.com, has ceased to operate. ‘str0ke’ explained on his short add that this is simply due to a lack of time nothing else without a real clarification on that. From milw0rm: Well, this is my goodbye header for milw0rm. I wish [...]

Share