[-] Overview
Trenitalia.com is the website of the most important railway company in
Italy.
In this website, I've been discovered two vulnerabilities that allow
attacker to
execute arbitrary javascript code via XSS or URL redirect.
[-] Vulnerability Description
In the first vulnerability, it's
Well I find is more serious to find /server-info availabable on one of
thats,
you could rebuild some important information on the apache
configuration, modules, directives, etc..
Alessandro Fiorenzi
On Sat, 2007-07-21 at 22:53 -0500, Todd Troxell wrote:
Noticing lots of admins tend to forget
A WONDERFUL Firefox extension called noscript blocks this and many other
types pf malware as long as the users don't fall into the ZoneAlarm Zone
and allow anything that requests access.
Rodney Wise
See where your personal information goes once you give it out.
http://pplrwise.blogspot.com
On
1. DESCRIPTION OF THE SOFTWARE
StatCounter.com is a free yet reliable invisible web tracker, highly
configurable hit counter as well as a real-time detailed web stats tool.
Insert a simple piece of our code on your web page or blog and you will
be able to analyse and monitor all the visitors to
n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2007.023 23-Jul-2007
Vendor:Norman,
n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2007.020 23-Jul-2007
Vendor:Norman,
n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2007.021 23-Jul-2007
Vendor:Norman,
n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2007.022 23-Jul-2007
Vendor:Norman,
n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2007.020 23-Jul-2007
Vendor:Norman,
Hi All,
Just wondered if I am missing anything important. Am planning to give
talk on web security.
Is there any other technique other than the following I have to speak
about ?
1)XSS
2)CSRF
3)SQL Injection
4)AJAX/JSON hijacking
5)HTTP response splitting
6)RFI
7)CRLF
8)MITM
Thanks
Deepan
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 1338-1[EMAIL PROTECTED]
http://www.debian.org/security/ Moritz Muehlenhoff
July 23rd, 2007
Don't forget all the nasty Java slut action..
On 7/23/07, Deeþàn Chakravarthÿ [EMAIL PROTECTED] wrote:
Hi All,
Just wondered if I am missing anything important. Am planning to give
talk on web security.
Is there any other technique other than the following I have to speak
about ?
Anti-DNS pinning.
Deeþàn Chakravarthÿ wrote:
Hi All,
Just wondered if I am missing anything important. Am planning to give
talk on web security.
Is there any other technique other than the following I have to speak
about ?
1)XSS
2)CSRF
3)SQL Injection
4)AJAX/JSON hijacking
5)HTTP
On Tue, 24 Jul 2007 01:20:14 +0800, =?ISO-8859-1?Q?Dee=FE=E0n_Chakravarth=FF?=
said:
Hi All,
Just wondered if I am missing anything important. Am planning to give
talk on web security.
If you get through the people's heads the concept of Filter in good, rather
than filter out bad, you'll
Canonicalization
Input Validation
Buffer Overflows (Stack Buffer Overflows - Heap/BSS/Data Overflows)
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Deeþàn
Chakravarthÿ
Sent: Monday, July 23, 2007 1:20 PM
To: [EMAIL PROTECTED];
I suggest taking a look at OWASP's top ten list:
http://www.owasp.org/index.php/Top_10_2007
- Original Message
From: Deeþàn Chakravarthÿ [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; full-disclosure@lists.grok.org.uk
Sent: Monday, July 23, 2007 11:20:14 AM
Subject: [Full-disclosure] Am I
Off the top of my head: cookie manipulation, weak session number
predictability, second-order command injection, parameter manipulation
such as shell redirects/pipe issues, web services (SOAP, WSDL access
etc) and dangerous HTTP methods such as PUT. There'll be more, but I'm
still on my first
Just a few additions/ideas:
You have RFI but not LFI.. so add that. I'd also say general input
validations as some other mentioned. This ties into your XSS (persistent
or otherwise) and some of your other issues like injecting
code/iframes/xss etc into forums and so on. Also as mentioned a big
SECURITYREPORTER - AUTHENTICATION BYPASS AND DIRECTORY TRAVERSAL
VULNERABILITY
Product: SecurityReporter
Version: 4.6.3 Build Date: 04/20/2007
Platform: Win32
Vendor: Secure Computing (www.securecomputing.com)
Product Description
---
SecurityReporter is a security event analysis
On Sat, 2007-07-21 at 22:53 -0500, Todd Troxell wrote:
Noticing lots of admins tend to forget about /server-status, I typed at
random:
I am sure there are ten billion others. In some cases this is worse than
someone grabbing your access log.
I would advise checking out the Threat Classification by The Web Application
Security Consortium
at http://www.webappsec.org/projects/threat/.
Version 2 is in the works and should be out in a month or so with MANY updates.
- Robert
Hi All,
Just wondered if I am missing anything
Endpoint Security/ Social Engineering. The weakest link in your
security chain exists between the computer and the chair.
On 7/23/07, Deeþàn Chakravarthÿ [EMAIL PROTECTED] wrote:
Hi All,
Just wondered if I am missing anything important. Am planning to give
talk on web security.
Is there
Bypasses LDAP.
http://intra1.admin.state.ak.us/authContact/search/
https://helpdesk.state.ak.us/CAisd/pdmweb.exe?USERNAME=eso_tech+use_template=1+OP=CREATE_NEW+FACTORY=chg
--
pwnd.security.pwnd
___
Full-Disclosure - We believe in it.
Charter:
Ipswitch Instant Messaging Server Denial of Service Vulnerability
iDefense Security Advisory 07.23.07
http://labs.idefense.com/intelligence/vulnerabilities/
Jul 23, 2007
I. BACKGROUND
Ipswitch Instant Messaging is the instant messaging software that is
included with Ipswitch Collaboration Suite
Local and Remote file inclusion, yes, you are actually missing a bunch of
things.. ;)
On 7/23/07 1:20 PM, Deeflàn Chakravarthÿ [EMAIL PROTECTED] wrote:
Hi All,
Just wondered if I am missing anything important. Am planning to give
talk on web security.
Is there any other technique other
Doesn't RFI stand for remote file inclusion you ignorant jackass?
J
On Mon, 23 Jul 2007 17:20:56 -0400 Simon Smith [EMAIL PROTECTED]
wrote:
Local and Remote file inclusion, yes, you are actually missing a
bunch of
things.. ;)
On 7/23/07 1:20 PM, Deeflàn Chakravarthÿ [EMAIL PROTECTED]
wrote:
The Pwnie Awards are an annual award ceremony celebrating the achivements and
failures of security researchers and the security community.
It will feature awards such as:
* Pwnie for Best Server-Side Bug
* Pwnie for Best Client-Side Bug
* Pwnie for Mass 0wnage
* Pwnie for Most Innovative
Kid, your posts continue to clearly demonstrate your immaturity.
http://www.security-express.com/archives/fulldisclosure/2007-07/0404.html
http://archives.neohapsis.com/archives/fulldisclosure/2007-07/0372.html
http://seclists.org/fulldisclosure/2007/Jul/0369.html
But I am right, am I not? Just pointing out what everyone else was
thinking already :)
Anyway, if you are implying I am immature because of my ad homonym,
please refer to the following:
http://archives.neohapsis.com/archives/fulldisclosure/2007-
01/0380.html
You should have learned from KF by
what about a lifetime achievement award, we really need to commend vixie
on his years of fine work ;]
On Mon, 23 Jul 2007, Alexander Sotirov wrote:
Date: Mon, 23 Jul 2007 14:13:25 -0700
From: Alexander Sotirov [EMAIL PROTECTED]
To: full-disclosure@lists.grok.org.uk
Subject:
You are right with respect to your RFI comment... But as far as me learning
anything, don't count on it. I am after all an ignorant jackass remember?
On 7/23/07 6:32 PM, Joey Mengele [EMAIL PROTECTED] wrote:
But I am right, am I not? Just pointing out what everyone else was
thinking already
No, I forgot. I now remember, thank you. As long as we agree that
you were wrong, I was right, and you are an ignorant jackass who
may or may not have had sexual relations with the Oreo named KF, I
see no need for this thread to continue.
J
On Mon, 23 Jul 2007 18:38:45 -0400 Simon Smith
Right kid... Can we also agree that you are immature? I mean, we can't lay
this to rest unless we come to a compromise. Frankly, I don't feel that it
would be a compromise if you didn't come half way in this relationship.
While we're at it... Lets also agree that you're a coward, probably fat and
Wow Glad I joined this list today.
Sent from my BlackBerry® wireless device
-Original Message-
From: Simon Smith [EMAIL PROTECTED]
Date: Mon, 23 Jul 2007 18:48:14
To:[EMAIL PROTECTED], [EMAIL PROTECTED],[EMAIL PROTECTED],
full-disclosure@lists.grok.org.uk
Subject: Re:
Yeah... Adriel loves the cock.
-KF
On Jul 23, 2007, at 6:40 PM, Joey Mengele wrote:
No, I forgot. I now remember, thank you. As long as we agree that
you were wrong, I was right, and you are an ignorant jackass who
may or may not have had sexual relations with the Oreo named KF, I
see no need
n.runs AG
http://www.nruns.com/ security(at)nruns.com
n.runs-SA-2007.022 23-Jul-2007
Vendor:Norman,
LOLOLOLOLOL. I submit, you have proven your maturity.
J
On Mon, 23 Jul 2007 18:48:14 -0400 Simon Smith [EMAIL PROTECTED]
wrote:
Right kid... Can we also agree that you are immature? I mean, we
can't lay
this to rest unless we come to a compromise. Frankly, I don't feel
that it
would be a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 1339-1[EMAIL PROTECTED]
http://www.debian.org/security/ Moritz Muehlenhoff
July 23rd, 2007
Oh so now you're calling me old?
On 7/23/07 7:37 PM, Joey Mengele [EMAIL PROTECTED] wrote:
LOLOLOLOLOL. I submit, you have proven your maturity.
J
On Mon, 23 Jul 2007 18:48:14 -0400 Simon Smith [EMAIL PROTECTED]
wrote:
Right kid... Can we also agree that you are immature? I mean, we
OMG Pwnies
I couldn't resist.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
They claimed they took down Internet access to the servers but it's
still there. Read their advisory on their Unicenter System Help Pages:
---
07/23/2007 05:37 pm
The Enterprise Technology Services Help Center has been advised
effective immediately, outside
For the full advisory and PoC, see:
http://www.vdalabs.com/tools/linkedin.html
Jared
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
On 7/23/07, Simon Smith [EMAIL PROTECTED] wrote:
Oh so now you're calling me old?
pop, sip, burp, a!
drink anyone ? ;-P
- nocon
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and
43 matches
Mail list logo