Design/Logic Flaw

The site-locking implementation in the SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance relies on a list of server domain names to restrict execution of ActiveX controls, which makes it easier for man-in-the-middle attackers to execute...

Translation software hijacking attacks-vulnerability warning-the black bar safety net

Original link: http://xeye.us/blog/2009/02/%E7%BF%BB%E8%AF%91%E8%BD%AF%E4%BB%B6%E5%8A%AB%E6%8C%81%E6%94%BB%E5%87%BB/ You believe of your mouse? Ever wondered, when your mouse in the selected passage, by translation software the flat-screen takes the word function to be translated, then it is hidi...