XSS bug in US Robotics firmware USR5463-v0_06.bin

Hi! This bug was finded in the USR5463 802.11g Wireless Router. http://192.168.2.1/cgi-bin/setup_ddns.exe"; method="post"> document.forms[0].submit() Regards, David K.

Re: The New ISO Hacking Standard

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Pete, if this becomes an ISO standard will it still be available for free, or will you need to pay to get copies of it like you do for other ISO standards? Also, once the ISO standard is defined, how will new open source contributions be in

[ MDVSA-2010:082-1 ] clamav

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:082-1 http://www.mandriva.com/security/

RE: STP mitm attack idea

> > Shutting down the port is useful for security in the way that it helps > prevent the type of attack that Xperience has described. When BPDU Guard > is implemented the port will be shut down if any Spanning Tree packets > are seen. It is risky turning off Spanning Tree as any loops in the > ne

[USN-941-1] MoinMoin vulnerability

=== Ubuntu Security Notice USN-941-1 May 20, 2010 moin vulnerability CVE-2009-4762 === A security issue affects the following Ubuntu releases: Ubuntu 9.04 This advisory a

[Kil13r-SA-20100513] Adobe Flash Player 10.0 Denial Of Service Vulnerability

Title: [Kil13r-SA-20100513] Adobe Flash Player 10.0 Denial Of Service Vulnerability Author: Kil13r - http://www.kil13r.info/ Local / Remote: Local Timeline: 2008/10/22 - Discover 2009/07/19 - Vendor notification 2009/07/21 - Vendor response 2009/07/25 - Contact vendor 2009/07/28 - Vendor respons

[HITB-Announce] HITBSecConf2010 - Malaysia Call for Papers

The Call for Papers for HITB Security Conference 2010 Malaysia is now open! Talks that are more technical or that discuss new and never before seen attack methods are of more interest than a subject that has been covered several times before. Submissions are due no later than 9th August 2010. HI

[Suspected Spam][USN-940-1] Kerberos vulnerabilities

=== Ubuntu Security Notice USN-940-1 May 19, 2010 krb5 vulnerabilities CVE-2007-5902, CVE-2007-5971, CVE-2007-5972, CVE-2010-1320, CVE-2010-1321 === A security issue affect

Re: DoS vulnerabilities in Firefox, Internet Explorer, Chrome, Opera and other browsers

Let's take one for example. Did you email sec...@microsoft.com? I have before and 100% of the time they respond. Patches take time. The do not occur over night. Furthermore it may take a day for the vendor to respond to you. This isn't about past issues, this is about this issue. A single

Smart Douran CMS Remote File Download

# # Securitylab.ir # # Application Info: # Name: Smart Douran CMS # Vendor: http://smartdouran.ir ###

Re: DoS vulnerabilities in Firefox, Internet Explorer, Chrome, Opera and other browsers

Hello Susan! Granted I can denial of service a browser just by loading up a horrible add in or just using a browser DoS of the browser is already bad thing. And there are many risks for users from DoS holes in browsers, which I wrote about in 2008 in my articles Dangers of DoS attacks on brows

[ MDVSA-2010:102 ] ghostscript

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 ___ Mandriva Linux Security Advisory MDVSA-2010:102 http://www.mandriva.com/security/

Linux Mint 8 mintUpdate Insecure Temporary File Creation

== Linux Mint 8 mintUpdate Insecure Temporary File Creation == Author: L4teral Impact: Privilege Escalation Status: Update available