Nikto 2.1.0 released Posted by david lodge on Oct 18 It’s final time to stop procrastinating: Nikto 2.1.0 is here! (Available from http://cirt.net/nikto2) This version has gone through significant rewrites under the hood to how Nikto works, to make it more expandable and usable. Changes include: * Rewrite to the plugin engine allowing more control [...]
Posts under ‘Security’
Unusual traffic from Loopback to Bogon Address, (Sat, Oct 17th)
Unusual traffic from Loopback to Bogon Address, (Sat, Oct 17th) Lode sent in some unusual traffic he is seeing from one of his servers. The traffic is Protocol 0 (IPv6 Hop by Hop), originates from a Loopback address and is destined to 108.22.0.0, which is a reserved address. 13:02:52.012656 IP (tos 0×7,CE, ttl 255, id [...]
milw0rm
Re: milw0rm Posted by Michal on Oct 17 Anders Klixbull wrote: at a lemonparty URL: http://seclists.org/fulldisclosure/2009/Oct/247
Mozilla disables Microsoft plug-ins?, (Sat, Oct 17th)
Mozilla disables Microsoft plug-ins?, (Sat, Oct 17th) A couple of readers have indicated that this evening when they started Firefox it disabled the Microsoft plug-ins Windows Presentation Foundation and Microsoft .NET Framework Assistant 1.1. These plug-ins have been the source of some controversy since it was revealed earlier this week that Microsoft had patched them [...]
Acer Reveals First 3D Laptop
Acer Reveals First 3D Laptop Acer has been a busy little bee today, revealing various products like the Windows 7 Multitouch notebook and the 11.6-inch Aspire Timeline CULV notebook. Acer also displayed the world’s first mainstream 3D laptop during the press conference today as well, the oddly-named Acer Aspire 5738PG. According to Pocket Lint’s hands-on [...]
Microsoft Office BMP Image Colour Handling Integer Overflow
Bugtraq: Secunia Research: Microsoft Office BMP Image Colour Handling Integer Overflow Secunia Research: Microsoft Office BMP Image Colour Handling Integer Overflow URL: http://www.securityfocus.com/archive/1/507174
failure notice
Re: failure notice Posted by pand0ra on Oct 13 I think you can throw in a change in the digital signature of any of your signed files and/or unusual communication coming from the system.
When is it valid to claim that a vulnerability leads to a remote attack?
Re: When is it valid to claim that a vulnerability leads to a remote attack? Posted by Chris on Oct 10 ^^^^^^^^^^^^^^^^ Thierry, please fix your clock. URL: http://seclists.org/fulldisclosure/2009/Oct/154
When is it valid to claim that a vulnerability leads to a remote attack?
Re: When is it valid to claim that a vulnerability leads to a remote attack? Posted by Thierry Zoller on Oct 10 Hi Dan, DK> There are a substantial number of file formats that are code-execution DK> equivalent with no exploits necessary — .exe, .com, .bat, etc. You thus DK> can’t say that an executed [...]
September
Huge uptick in spam-borne malware since mid-September The amount of the amount of spam containing malware increased ninefold during September over the previous month, according to Symantec. URL: http://feedproxy.google.com/~r/SCMagazineHome/~3/jKwGl-9DyV0/
Running Honeyd on interface IP
Running Honeyd on interface IP Posted by Evgeniy Arbatov on Jul 22 Hello, I have a question concerning the configuration of Honeyd IP address. I want to make my honeypot visible by the IP address of host computer interface. I have the following setup, within the same physical host: 1.1.1.1 (interface IP)-> 2.2.2.2 (honeyd IP) [...]
3339 (email_and_web_security_appliance)
CVE-2009-3339 (email_and_web_security_appliance) Unspecified vulnerability in McAfee Email and Web Security Appliance 5.1 VMtrial allows remote attackers to read arbitrary files via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.9 through 8.11. NOTE: as of 20090917, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable [...]
DOS attack tool can be used in lab
DOS attack tool can be used in lab Posted by L. Pop on Sep 2 Hi Guys, Recently one of our freebsd servers always experience "Socket: No buffer space available…" Errors, and there are too many FIN_Wait1s in system, it is likely that we are being DOSed. Is there any handy DOS simulate tool that i can use in lab to [...]
FreeBSD stuff
FreeBSD stuff Posted by Kingcope on Aug 22 I am not going to share IIS 0day anymore. http://isowarez.de/bsd-setusercontext.txt Bye. " BIG TIME " Full-Disclosure – We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia – http://secunia.com/ Received on Aug 21… URL: http://seclists.org/fulldisclosure/2009/Aug/0300.html
Cyber Wiki page planned
Cyber Wiki page planned The U.S. Department of Homeland Security intends to contract with WiiKno, a Texas-based knowledge management solutions provider, to create a Wiki page for the agency that will be used to share information among the National Cyber Security Center and its six federal cybersecurity centers, according to a notice posted this week [...]
