337 matches found
Malicious Ads Serving Malware to Spotify Users
Users of free music streaming service, Spotify are reporting that they have been the victims of drive-by malware attacks according to a report from Netcraft. The attacks appear to be coming from third party advertisements which are displayed in the ad-supported version of Spotify’s software. By...
One Million Web Sites Infected At End of 2010
There was a sharp jump in the prevalence of malicious Web advertisements in the final quarter of 2010, with loosely monitored “remnant” ad networks responsible for an increasing share of the attacks, according to a report from the firm Dasient. The Dasient Q4 Malware Update reported that more tha...
PT-2011-1625 · Cisco · Cisco Asa +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.23 and earlier Cisco PIX Security Appliances devices affected versions not specified Description: The issue concerns the Neighbor Discovery ND protocol implementation in th...
IPv6 Local Neighbor Discovery Using Router Advertisement
Send a spoofed router advertisement with high priority to force hosts to start the IPv6 address auto-config. Monitor for IPv6 host advertisements, and try to guess the link-local address by concatenating the prefix, and the host portion of the IPv6 address. Use NDP host solicitation to determine ...
3) Beware of strangers bearing e-bates
With much of the world in the grips of a recession, coupon clipping is suddenly in vogue again. That’s true for online shoppers, as well, where the hunger for e-coupons has spawned legions of Web sites, including CouponSherpa.com, Ebates.com and the like. While reputable sites like these can be...
Joomla! Component com_djClassifieds 0.9.1 - Arbitrary File Upload
Joomla! Component comdjClassifieds 0.9.1 - Arbitrary File Upload Dork:inurl:comdjclassifieds ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888 888.8' 888.8' 888 88b ooo 888' 888' o888o Y8bood8P' 8' 8'...
Joomla! Component com_djClassifieds 0.9.1 - Arbitrary File Upload
Dork:inurl:comdjclassifieds ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888 888.8' 888.8' 888 88b ooo 888' 888' o888o Y8bood8P' 8' 8' --------------------------------------------------------------------------------------...
Microsoft Confirms IE Zero-Day Used in Google Attack
Hackers linked to China used a zero-day vulnerability in Microsoft’s Internet Explorer browser to compromise corporate systems at more than 30 U.S. companies, including Google, Adobe and Juniper Networks. According to Microsoft, the vulnerability is still unpatched and can lead to remote code...
Major Ad Servers Flooded With Malicious Ads
From IDG News Service Robert McMillan Criminals flooded several online ad networks with malicious advertisements over the weekend, causing popular Web sites such as the Drudge Report, Horoscope.com and Lyrics.com to inadvertently attack their readers, a security company said Wednesday. The troubl...
CVE-2007-1532
The neighbor discovery implementation in Microsoft Windows Vista allows remote attackers to conduct a redirect attack by 1 responding to queries by sending spoofed Neighbor Advertisements or 2 blindly sending Neighbor Advertisements...
Design/Logic Flaw
The neighbor discovery implementation in Microsoft Windows Vista allows remote attackers to conduct a redirect attack by 1 responding to queries by sending spoofed Neighbor Advertisements or 2 blindly sending Neighbor Advertisements...
CYDOOR Software Detection
Cydoor Desktop Media, an adware program, is installed on the remote host. This program displays pop-up/pop-under advertisements and changes web browser settings e.g., homepage without the user's permission. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12012;...
BetterInternet Software Detection
The remote host is using BetterInternet. This program monitors web traffic, displaying pop-up/pop-under advertisements based on the content. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12011; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate...
CVE-2001-0877
Universal Plug and Play UPnP on Windows 98, 98SE, ME, and XP allows remote attackers to cause a denial of service via 1 a spoofed SSDP advertisement that causes the client to connect to a service on another machine that generates a large amount of traffic e.g., chargen, or 2 via a spoofed SSDP...
CVE-2001-0877
Universal Plug and Play UPnP on Windows 98, 98SE, ME, and XP allows remote attackers to cause a denial of service via 1 a spoofed SSDP advertisement that causes the client to connect to a service on another machine that generates a large amount of traffic e.g., chargen, or 2 via a spoofed SSDP...
CVE-2000-0568
Sybergen Secure Desktop 2.1 does not properly protect against false router advertisements ICMP type 9, which allows remote attackers to modify default routes...
Multiple vulnerabilities in Sybergen Secure Desktop
Infosec Security Vulnerability Report No: Infosec.20000625.sybergen.a =============================== Vulnerability Summary --------------------- Problem 1: Sybergen Secure Desktop does not protect against false router advertisements. Problem 2: Sybergen Secure Desktop dies when a user clears the...