8809 matches found
Social networking attacks target enterprise data
By Alex Rothacker, Team SHATTER It seems as though the latest rash of threats and attacks all have a familiar ring to them: they’re all aimed at social networking sites like Twitter and Facebook, which is interesting, because smart attackers will use whatever means possible to get to the stuff th...
Twitter API ripe for malware, worm abuse
A security researcher is warning that the Twitter API can be trivially abused by hackers to launch worm attacks. The red-hot social networking/microblogging service has been scrambling to plug cross-site scripting and other Web site vulnerabilities to thwart worm attacks but, as researcher Aviv...
minitwitter 0.3-beta - SQL Injection / Cross-Site Scripting
|| || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ---------------------------------------------------------------------------------------------- | MULTIPLE...
IT staffs pressured to relax Web security
From SearchSecurity.com Rob Westervelt IT managers are under pressure from the top executives in their organizations to relax their policies on Web security in order to make users more productive. A new survey of more than 1,000 IT managers found that sales and marketing personnel also are leanin...
Debian DSA-1800-1 : linux-2.6 - denial of service/privilege escalation/sensitive memory leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, privilege escalation or a sensitive memory leak. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0028 Chris Evans discovered a situation in which ...
Mac OS X 10.5.x < 10.5.7 Multiple Vulnerabilities
The remote host is running a version of Mac OS X 10.5.x that is prior to 10.5.7. Mac OS X 10.5.7 contains security fixes for the following products : - Apache - ATS - BIND - CFNetwork - CoreGraphics - Cscope - CUPS - Disk Images - enscript - Flash Player plug-in - Help Viewer - iChat -...
Can social networking be secure at work?
From CIO C.G. Lynch As more workers spend a greater part of their days on social networks like Facebook and Twitter, hackers have turned their energies toward spreading their malware across those services, harming workstations and company networks. That’s the contention of a recent report measuri...
MiniTwitter 0.2-Beta SQL Injection
--------------------------------------------------------------------- MULTIPLE SQL INJECTION VULNERABILITIES --MiniTwitter v0.2-Beta-- --------------------------------------------------------------------- CMS INFORMATION: --WEB: http://mt.bioscriptsdb.com/ --DOWNLOAD:...
MiniTwitter 0.2-Beta User Options Changer
----------------------------------------------------------------- CMS INFORMATION: +-WEB: http://mt.bioscriptsdb.com/ +-DOWNLOAD: http://sourceforge.net/projects/minitt/ +-DEMO: http://www.bioscripts.net/minitwitter/index.php +-CATEGORY: Social Networking +-DESCRIPTION: Your business needs a...
MULTIPLE SQL INJECTION VULNERABILITIES --MiniTwitter v0.2-Beta-->
--------------------------------------------------------------------- MULTIPLE SQL INJECTION VULNERABILITIES --MiniTwitter v0.2-Beta-- --------------------------------------------------------------------- CMS INFORMATION: --WEB: http://mt.bioscriptsdb.com/ --DOWNLOAD:...
MiniTwitter 0.2b - Multiple SQL Injections
MiniTwitter 0.2b - Multiple SQL Injections || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH!...
MiniTwitter 0.2b Remote User Options Changer Exploit
Exploit for unknown platform in category web applications ==================================================== MiniTwitter 0.2b Remote User Options Changer Exploit ====================================================...
MiniTwitter 0.2b - Multiple SQL Injections
|| || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ---------------------------------------------------------------------------------------------- | MULTIPLE SQL...
ClearSpace Detection
The remote web server is running Jive ClearSpace, a social networking site letting users manage wikis, publish blog entries and discuss between each other. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid38183; scriptversion"1.8"; scriptnameenglish:"ClearSpace...
Preemptive Protection against Microsoft ISA Server Cross-Site Scripting (XSS) Vulnerability (MS09-016)
A cross-site scripting XSS vulnerability has been reported in the cookieauth.dll component in Microsoft Internet Security and Acceleration ISA Server. ISA Server, originating as Microsoft Proxy Server, is a Firewall & Security product that provides Application-Layer Firewalling, acts as a VPN...
[SECURITY] Fedora 9 Update: galeon-2.0.7-8.fc9
Galeon is a web browser built around Gecko Mozilla's rendering engine and Necko Mozilla's networking engine. It's a GNOME web browser, designed to take advantage of as many GNOME technologies as makes sense. Galeon was written to do just one thing - browse the web...
[SECURITY] Fedora 10 Update: netatalk-2.0.3-23.fc10
This package enables Linux to talk to Macintosh computers via the AppleTalk networking protocol. It includes a daemon to allow Linux to act as a file server over EtherTalk or IP for Mac's...
[SECURITY] Fedora 9 Update: netatalk-2.0.3-21.fc9
This package enables Linux to talk to Macintosh computers via the AppleTalk networking protocol. It includes a daemon to allow Linux to act as a file server over EtherTalk or IP for Mac's...
Cisco Application Networking Manager Default User Credentials Security Bypass (CVE-2009-0616)
Cisco Application Networking Manager ANM is a network management application that manages Cisco Application Control Engine ACE modules or appliances. The vulnerability is due to a design error in the ANM that does not force credential changes during installation. A remote attacker may exploit thi...
HP Laserjet multiple models web management CSRF vulnerability & insecure default configuration
Louhi Networks Oy -= Security Advisory =- Advisory: HP LaserJet multiple models web management CSRF vulnerability & insecure default configuration Release Date: 2009-03-17 Last Modified: 2009-03-17 Authors: Henri Lindberg, CISA henri d0t lindberg at louhi d0t fi Application: HP Embedded Web Serve...