Hacker leaks Bangladesh Intelligence classified Emails

Indian hacker, Godzilla once again hit Bangladesh government server. Hacker told us about his latest cyber attack on Directorate General of Forces Intelligence Bangladesh DGFI - www.dgfi.gov.bd server . He claimed to back up all confidential mails in the server and list of all their agents around...

Hacker leaks Bangladesh Intelligence classified Emails

Indian hacker, Godzilla once again hit Bangladesh government server. Hacker told us about his latest cyber attack on Directorate General of Forces Intelligence Bangladesh DGFI - www.dgfi.gov.bd server . He claimed to back up all confidential mails in the server and list of all their agents around...

CVE-2012-0209

Horde 3.3.12, Horde Groupware 1.2.10, and Horde Groupware Webmail Edition 1.2.10, as distributed by FTP between November 2011 and February 2012, contains an externally introduced modification Trojan Horse in templates/javascript/opencalendar.js, which allows remote attackers to execute arbitrary...

Cross site request forgery (csrf)

The Filtering Service in Websense Enterprise 5.2 through 6.3 does not consider the IP address during URL categorization, which makes it easier for remote attackers to bypass filtering via an HTTP request, as demonstrated by a request to a compromised server associated with a specific IP address...

CVE-2008-7312

The CVE affects Websense Enterprise 5.2–6.3 Filtering Service; the root cause is that the URL categorization does not consider the IP address, enabling bypass of filtering via an HTTP request to a compromised server associated with a specific IP. No explicit exploit code or in‑the‑wild details ar...

BeneficialBank Business v4.13.1 - Auth Bypass Vulnerability

Document Title: =============== BeneficialBank Business v4.13.1 - Auth Bypass Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=654 Release Date: ============= 2012-07-08 Vulnerability Laboratory ID VL-ID: ====================================...

Famous VPN service Proxpn compromised

Famous VPN service Proxpn compromised proXPN is one of the famous VPN client based on OpenVPN Service, today hacked by hacked named "TurkisH-RuleZ ". The Server is seems to be Compromised in this Hacking case. Compromised url is http://proxpn.com/whmcs1/downloads and Mirror of Hack is available...

How to Run a Scareware Campaign

The infection routines being used by some scareware and rogue AV gangs are much more comprehensive and far-reaching than many current analyses have shown, experts say, including some attacks that not only place a malicious script on a compromised server, but infect every single legitimate script ...

IRC Server Backdoor Went Unnoticed for 7 Months

The developers of the open source IRC server UnrealIRCd have had to report that the file servers of the project were compromised several months ago and the IRC servers code, Unreal3.2.8.1.tar.gz was replaced by a version with a backdoor. The backdoor allows anyone to execute commands on the serve...

The Business of Phishing

Today I got a ‘Anti-virus notification message’ from our mail server protected by kav4lms so naturally I was interested in what the content was. Examining the quarantined mail on the server revealed some interesting details starting from the mail header itself. These ‘phish kits’ are archives whi...

FreeBSD : openvpn -- arbitrary code execution on client through malicious or compromised server (6129fdc7-6462-456d-a3ef-8fc3fbf44d16)

James Yonan reports : A format string vulnerability in the foreignoption function in options.c could potentially allow a malicious or compromised server to execute arbitrary code on the client. Only non-Windows clients are affected. The vulnerability only exists if a the client's TLS negotiation...

Security Update: [CSSA-2003-SCO.3] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : ftp vulnerability with pipe symbols in filenames

To: [email protected] [email protected] [email protected] [email protected] SCO Security Advisory Subject: UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : ftp vulnerability with pipe symbols in filenames Advisory number: CSSA-2003-SCO.3 Issue date: 2003 March...

Security Advisory

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Piranha web GUI exposure Advisory ID: RHSA-2000:014-10 Issue date: 2000-04-18 Updated on: 2000-04-24 Product: Red Hat Linux Keywords: piranha remote CGI command Cross references: php -...