312 matches found
Researchers Expose Security Flaw in Internet-Ready HDTVs
Researchers at Mocana, a security technology firm in San Francisco, recently demonstrated the ease with which they could hack into a popular Internet-ready HDTV model. They exploited a vulnerability in the software that displays websites on the TV, allowing them to control the information sent to...
Facebook Revises Bug Disclosure Policy
Social networking behemoth Facebook revised their bug disclosure policy last week to protect well-intentioned vulnerability researchers from potential lawsuits stemming from their discoveries. The revisions, which were made with the assistance of the Electronic Frontier Foundation, are part of...
New Browsing Tool Keeps Firesheep At Bay
Weeks after researchers unveiled Firesheep, the Firefox Web browser plugin that makes it easy to snoop on strangers’ Facebook, Flickr and other Web 2.0 sessions, a software update from the Electronic Frontier Foundation promises to secure more Web sessions from Firesheep-enabled snooping. The...
The Folly of Internet Wiretapping
The last 10 years have seen a great number of advancements in the sophistication and usability of strong encryption programs, and many people now use encrypted messaging services by default. This has made it much simpler for people to keep their private thoughts and data private and secure, and n...
EFF and Tor Launch HTTPS Everywhere Firefox Extension
Two prominent privacy-rights organizations, the Tor Project and the Electronic Frontier Foundation, have launched a new Firefox extension that encrypts all of the browser’s communications with some prominent Web sites. The extension, called HTTPS Everywhere, is designed to create secure HTTPS...
AVCON 4.6.8.7 Buffer Overflow
!/usr/bin/perl Exploit Title: AVCON Buffer Overflow Date: 5/7/10 Author: Dillon Beresford URL: http://www.avcon.com.cn/ Version: 4.6.8.7 Tested on: XP SP2 and SP3 CVE : NONE Code : exploit.pl Twitter: http://twitter.com/D1N Dork: site:gov.cn "AVCON" There are other bugs... This is just for fun ;-...
AVCON Buffer Overflow
Exploit for windows platform in category local exploits ===================== AVCON Buffer Overflow ===================== !/usr/bin/perl Exploit Title: AVCON Buffer Overflow Date: 5/7/10 Author: Dillon Beresford URL: http://www.avcon.com.cn/ Version: 4.6.8.7 Tested on: XP SP2 and SP3 CVE : NONE...
Cross site scripting
Cross-site scripting XSS vulnerability in Tor World Tor Search 1.1 and earlier, I-Navigator 4.0, Mobile Frontier 2.1 and earlier, Diary.cgi aka Quotes of the Day 1.5 and earlier, Tor News 1.21 and earlier, Simple BBS 1.3 and earlier, Interactive BBS 1.3 and earlier, Tor Board 1.1 and earlier,...
CVE-2008-0917
Cross-site scripting XSS vulnerability in Tor World Tor Search 1.1 and earlier, I-Navigator 4.0, Mobile Frontier 2.1 and earlier, Diary.cgi aka Quotes of the Day 1.5 and earlier, Tor News 1.21 and earlier, Simple BBS 1.3 and earlier, Interactive BBS 1.3 and earlier, Tor Board 1.1 and earlier,...
CVE-2008-0917
In the connected documents, CVE-2008-0917 is described as a cross-site scripting (XSS) vulnerability in multiple Tor World CGI scripts, including Tor Search 1.1 and earlier, I-Navigator 4.0, Mobile Frontier 2.1, Diary.cgi 1.5 and earlier, Tor News 1.21 and earlier, Simple BBS 1.3 and earlier, Int...
CVE-2008-0917
Cross-site scripting XSS vulnerability in Tor World Tor Search 1.1 and earlier, I-Navigator 4.0, Mobile Frontier 2.1 and earlier, Diary.cgi aka Quotes of the Day 1.5 and earlier, Tor News 1.21 and earlier, Simple BBS 1.3 and earlier, Interactive BBS 1.3 and earlier, Tor Board 1.1 and earlier,...
JVN#54593414 Cross-site scripting vulnerability in multiple Tor World CGI scripts
Tor World provides CGI scripts for implementing search engines, message boards, and other tools. Multiple Tor World CGI scripts contain a cross-site scripting vulnerability. Impact An arbitrary script can be executed on the user's web browser. Solution Update the Software Apply the latest update...