md5deep and hashdeep - Latest version 3.9.1 Released

md5deep and hashdeep - Latest version 3.9.1 Released md5deep is a set of programs to compute MD5, SHA-1, SHA-256, Tiger, or Whirlpool message digests on an arbitrary number of files. md5deep is similar to the md5sum program found in the GNU Coreutils package. hashdeep is a program to compute,...

Cross-Site Request Forgery

Cross-Site Request Forgery Security auditing tests performed on a Jira Bug Issue and Project Tracking Software locally running instance shown that the application is succeptible to Cross-Site Request Forgery attacks within this URL: /jira/plugins/servlet/streamscomments This vulnerability enables...

LilHTTP Source Code Disclosure/Download

$Id: lilhttpsourcedisclosure.rb 12196 2011-05-27 00:51:33Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Mandriva Update for python MDVSA-2011:096 (python)

Check for the Version of python OpenVAS Vulnerability Test Mandriva Update for python MDVSA-2011:096 python Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

(CGIHTTPServer): CGI script source code disclosure

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

Linux内核隧道初始化远程拒绝服务漏洞

Bugtraq ID: 47853 CVE ID：CVE-2011-1768 Linux是一款开放源代码的操作系统。 net/ipv6/ip6tunnel.c文件中IPv6隧道初始化函数包含如下代码： / 02 ip6tunnelinit - register protocol and reserve needed resources 03 04 Return: 0 on success 05 / 06 07 static int init ip6tunnelinitvoid 08 09 int err; 10 11 if xfrm6tunnelregister&ip4ip6handle...

Fingerprinting the author of the ZeuS Botnet !

The source code of the ZeuS Botnet is now available for Download. Derek Jones the author this article imagine there are a few organizations who would like to talk to the authors of this code. All developers have coding habits, that is they usually have a particular way of writing each coding...

Finally Source code of ZeuS Botnet Version: 2.0.8.9 available for Download !

Finally Source code of ZeuS Botnet Version: 2.0.8.9 available for Download ! Download Link : https://www.multiupload.com/P8QUNF4YJN Rar password : zeus Read More : Complete ZeuS source code has been leaked ! 'The Hacker News' Magazine - Social Engineering Edition - Issue 02 - May,2011 Released !...

Complete ZeuS source code has been leaked !

Complete ZeuS source code has been leaked On the 23rd of March 2011 we posted a blog about the source code for the infamous crime kit ZeuS Wsnpoem/Zbot being sold on at least two dark market forums see: https://www.csis.dk/en/csis/blog/3176/. This weekend we found the complete source code for thi...

Zeus Source Code Leaked

The source code to the infamous Zeus crimeware kit, which has been sold on underground forums for years, has been leaked and is now available for anyone to see if they know where to look. Security researchers over the weekend noticed that files that appeared to contain the source code for the Zeu...

PSF-2011-1 CGI directory traversal (is_cgi() function)

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

CVE-2011-1015

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

CVE-2011-1015

The iscgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / slash character at the beginning of the URI...

RHEL 5 : python (RHSA-2011:0492)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0492 advisory. - expat: buffer over-read and crash on XML with malformed UTF-8 sequences CVE-2009-3720 - Python: SMTP proxy RFC 2821 module DoS uncaught...

Source Code of Osama FaceBook worm Leaked !

Source Code of Osama FaceBook worm Leaked ! Source Code :...

Source Code is the New Hacker Currency !

Source Code is the New Hacker Currency ! No doubt you've been paying attention to the data breaches pile up lately... but have you noticed a trend? If you wade through the hype and hyperbole, dig into the details of the most prolific intrusions in recent history you'll notice one thing that shine...

Hydra v6.3 Released with oracle & snmp-enum modules !

Hydra v6.3 Released with oracle & snmp-enum modules ! A very fast network logon cracker which support many different services. Have a look at the feature sets and services coverage page - including a speed comparison against ncrack and medusa! Number one of the biggest security holes are password...

A wish wall program word insertion vulnerability-vulnerability warning-the black bar safety net

| Just looking at a portal of time to sweep a long, long time, and finally found a wishing wall, and then dig the source code. The 0day a wish wall program word insertion vulnerability Also looking for a long time, finally found the source after download nothing can be used to. The 0day a wish wa...

SoftMP3 SQL Injection

Exploit Title: SOFTMP3 source code SQL injection Date: 23/04/2011 Author: mArTi Software Link: http://softmp3.org/ Version: No others versions available... Tested on: Windows / Unix /.................................../ Introduction /.................................../ SoftMP3 released a source...

SoftMP3 SQL injection flaws and fixes-vulnerability warning-the black bar safety net

Exploit Title: SOFTMP3 source code SQL injection Date: 23/04/2011 Author: mArTi Software Link: http://softmp3.org/ Version: No others versions available... Tested on: Windows / Unix /.................................../ Introduction/.................................../ SoftMP3 released a source...