Your news resource for Internet Explorer, Firefox, Opera and Safari security news vulnerabilities, virus and other important information.
carl hardwick wrote: > > The vulnerability allows the attacker to silently redirect focus of > selected key press events to an otherwise protected file upload form > field. This is possible because of how onKeyDown event is handled, …
Read More…
Source: Full Disclosure
i had exactly the same thoughts. the only thing to wonder is, why firefox process the actual input after it did the “onkeydown”. but this is only “weird” and not a “flaw”. Joseph Hick wrote: > i didn’t understand your poc. > …
Read More…
Source: Full Disclosure
New flaw found in Firefox 2.0.0.4: Firefox file input focus vulnerabilities: This demo is very simple. when you input some text in the textarea, the file input element’s value will also change to it. I tested it on Firefox 1.5.0.12 and 2.0.0.4. PoC here: credits by - Hong …
Read More…
Source: Full Disclosure
Advisory : Internet Explorer Zone Domain Specification Dos and Page Suppressing Severity : Intermediate Version : IE 6.0 - 7.0 Dated : 18 June 2007 Explanation: The vulnerability is present in handling of domain names with different parameters [ sub domains] when specified in the Intranet zone and …
Read More…
Source: Full Disclosure
A certain ActiveX control in Avaxswf.dll 1.0.0.1 in Civitech Avax Vector 1.3 allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the WriteMovie method.
Read More…
Source: National Vulnerability Database
McAfee SecurityCenter Subscription Manager ActiveX Buffer Overflow Vulnerability
>> Advertisement <<
ALERT: “How A Hacker Launches A Blind SQL Injection Attack Step-by-Step”!” - White Paper
Blind SQL Injection can deliver total control of your server to a hacker giving them the ability to read, write and manipulate all data stored in your backend systems! Download this *FREE* white paper from SPI Dynamics for a complete guide to protection!
https://download.spidynamics.com/1/ad/bsq.asp?Campaign_ID=701600000004c29
Read More…
Source: Security Focus
Sony Network Camera SNC-P5 SonySncP5View.OCX ActiveX Control Buffer Overflow Vulnerability
Read More…
Source: Security Focus
This worm spreads via the Internet as an attachment to infected messages. Infected messages will be sent to all email addresses harvested from the victim machine.
It is written in Visual Basic Script (VBS). It is 562 bytes in size.
Read More…
Source: VirusList.com
This worm spreads via the Internet as an attachment to infected messages. Infected messages will be sent to all email addresses harvested from the victim machine.
It is written in Visual Basic Script (VBS). It is 455 bytes in size.
Read More…
Source: VirusList.com
This script virus infects files with a .php extension. It is 1,251 bytes in size. It is written in PHP.
Read More…
Source: VirusList.com