Posted by Hacker on 09月 4, 2008
Google Chrome on September 3 release, you want to know what Google Chrome loopholes? ArtHack organizations to tell you that the “loophole” is indeed so, but you can easily make the Chrome collapse!
Chrome which claims to have the strongest memory management, labelling between Hubuyingxiang, bringing a higher stability.
But as long as you Chrome in the URL box type “:%” characters, you can swap the collapse of the entire browser, and prompts:“Whoa! Google Chrome has crashed. Restart now?” Read more »
Posted by Hacker on 08月 31, 2008
You’re a smart, safety conscious iPhone user, right? You keep the phone set to require a 4-digit passcode every time it wakes up, so if you ever lose your baby, all your personal information is safe. But if you are running v2.0.2 of the iPhone operating system, you might as well not bother. A simple hack will get anybody past your PIN code with free access to all your mail, contacts and bookmarks. Ouch!
Acting on a tip from the Mac Rumors forums, Gizmodo’s Jesus Diaz whipped up a video of the exploit in action, a ridiculously easy two-step process:
1. Tap emergency call.
2. Double tap the home button.
This drops you into the iPhones “favorites” section. From here you can make calls or send e-mail, and with a few steps you can browse to the Address Book and then on to Mail, Safari or the SMS application. Read more »
Posted by Hacker on 08月 29, 2008
According to Agence France-Presse reported, NASA confirmed on the 27th, a mysterious computer virus on the 25th to sneak into the international space station, the virus is lucky computer security software was immediately isolated, the virus did not work on the International Space Station implications.
NASA spokesman Kelly (Kelly Humphries) said that the astronauts in their own laptop computer found the “worm” computer virus, the astronauts used laptop computers and the U.S. state of Texas on the ground mission control center each other Receive and send e-mail and computer viruses may be in the process of the astronauts into the computer system.
According to reports, this is a malicious computer virus software, it can operate the computer keystrokes to steal the station’s computer passwords and other sensitive data, and the theft of information via the Internet back to create the virus The computer hackers. Read more »
Posted by Hacker on 08月 29, 2008
互联网
Security experts warned recently that the core Internet routing protocols - BGP (Border Gateway Protocol, BGP) A security vulnerability exists, this is the DNS vulnerability Puchu after the second serious loophole in the Internet.
In the Defcon security conference this month in a speech, security experts and Alex Pilosov Tony Kapela BGP demonstrated how to use the loopholes in the agreement to launch attacks.
By BGP agreement, the information can be different in the network of interaction between the domain of autonomy. In order to achieve this objective, BGP maintaining a network of available IP routing table, and able to find the most effective Internet communications routing. In their lecture, Pilosov Kapela demonstration and a user’s communications how BGP was hijacked and redirected, this illustrates is considered very safe before the half-way communications can be intercepted. Read more »
Posted by Hacker on 08月 26, 2008
受影响系统:
Trend Micro OfficeScan 8.0
Trend Micro OfficeScan 7.3
Trend Micro OfficeScan 7.0
Trend Micro Worry-Free Business Security 5.0
描述:BUGTRAQ ID: 30792
CVE(CAN) ID: CVE-2008-2433
OfficeScan是一种针对整个网段的分布式杀毒软件。
OfficeScan的web管理控制台使用了不充分的熵用于创建识别已认证管理员的随机会话令牌。当真正的管理员登录时,会话令牌的熵仅来自于系统时间,细粒度为1秒。攻击者可以相对容易的暴力猜测到认证令牌,扮演成当前登录的管理员,然后通过操控配置完全控制系统。 Read more »
Posted by Hacker on 08月 25, 2008
Systems affected:
Opera Software
Opera <9.52
Will not be affected system:
Opera Software
Opera 9.52
Description:
BUGTRAQ ID: 30768
Opera is a popular
WEB browser, support for multiple platforms.
Opera’s version 9.52 before in a number of safety loopholes, and could allow a malicious user implementation of deception and cross-site scripting, leaking sensitive information or complete invasion of a user’s system.
Read more »
Posted by Hacker on 08月 21, 2008
受影响系统:
VideoLAN VLC Media Player 0.8.6i
描述:BUGTRAQ ID: 30718
VLC Media Player是一款免费的媒体播放器。
VLC媒体播放器的modules/demux/tta.c文件的Open()函数中存在整数溢出漏洞:
#define TTA_FRAMETIME 1.04489795918367346939
.
.
.
int i_seektable_size = 0, i; Read more »
Posted by Hacker on 08月 21, 2008
受影响系统:
Openwsman Openwsman 2.0
Openwsman Openwsman 1.2
描述:BUGTRAQ ID: 30694
CVE(CAN) ID: CVE-2008-2234,CVE-2008-2233
Openwsman是开放源代码的WEB服务管理规范的实现。
Openwsman在解码HTTP基础认证头时存在两个缓冲区溢出漏洞,其客户端受SSL会话中继攻击影响,如果远程攻击者向有漏洞的系统发送了畸形报文的话,就可以触发这些漏洞,导致执行任意指令。 Read more »
Posted by Hacker on 08月 19, 2008
受影响系统:
Amazesoft FlashGet 1.9.0.1012
描述:BUGTRAQ ID: 30685
FlashGet是一款多线程下载程序。
FlashGet没有正确地处理FTP PWD命令的响应数据,如果用户受骗连接到了恶意的FTP服务器并接收到了超长的响应的话,就可以触发栈溢出,导致在用户系统上执行任意指令。
<*来源:Krystian Kloskowski (h07@interia.pl) Read more »
Posted by Hacker on 08月 19, 2008
受影响系统:
BitTorrent BitTorrent 6.0.3
BitTorrent uTorrent 1.7.7
不受影响系统:
BitTorrent uTorrent 1.8
描述:BUGTRAQ ID: 30653
BitTorrent和uTorrent都是流行的bittorrent协议客户端,使用了相同的代码库。
BitTorrent和uTorrent没有正确地处理.torrent文件,如果用户受骗打开了带有超长created by字段的.torrent种子文件的话,就可以触发栈溢出,导致执行任意代码。 Read more »
Posted by Hacker on 08月 19, 2008
Microsoft Windows事件系统数组索引验证权限提升漏洞(MS08-049)
受影响系统:
Microsoft Windows XP SP3
Microsoft Windows XP SP2
Microsoft Windows Vista SP1
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003
Microsoft Windows 2000SP4
描述:
——————————————————————————–
BUGTRAQ ID: 30586
CVE(CAN) ID: CVE-2008-1456
Microsoft Windows是微软发布的非常流行的操作系统。
Microsoft Windows事件系统在调用函数指针数组时没有正确地验证索引范围,导致远程权限提升漏洞。成功利用此漏洞的攻击者可以完全控制受影响的系统。攻击者随后可安装程序;查看、更改或删除数据;或者创建拥有完全管理权限的新帐户。 Read more »
Posted by Hacker on 08月 15, 2008
据国外媒体报道,一个名波兰安全专家表示,Sun公司的移动Java技术存在两个严重的安全漏洞,黑客可以利用它们盗打电话、偷偷记录通话内容和访问诺基亚40系列手机上的信息。
据国外媒体报道,一个名波兰安全专家表示,Sun公司的移动Java技术存在两个严重的安全漏洞,黑客可以利用它们盗打电话、偷偷记录通话内容和访问诺基亚40系列手机上的信息。
安全专家Adam Gowdiak已经发现了在J2ME技术中存在的数个安全漏洞,上周四他又向Sun公司报告了这次发现的两个安全漏洞,并且在同一天向诺基亚公司通知了其手机中存在的安全问题。
不过,Gowdiak对披露的内容进行了部分保留。他只向厂商提供了一小部分他的发现内容。要想获得剩余内容,Sun或诺基亚将必须支付2万欧元。
据Gowdiak表示,这些漏洞可以被黑客利用来强制对Nokia40系列手机安装恶意Java程序。而这些恶意程序可以实现所有操作,其中包括从这个手机上往外拨打电话、发送文字短信和录制音频和视频信息。黑客还可以轻松访问诺基亚40系列手机上的任何文件,对其联系人列表进行读写操作,以及访问SIM卡等。 Read more »
Posted by Hacker on 08月 15, 2008
受影响系统:
Apache Tomcat 6.x
Apache Tomcat 5.x
Apache Tomcat 4.x
不受影响系统:
Apache Tomcat 6.0.17
Apache Tomcat 5.5.26
Apache Tomcat 4.1.37
描述:BUGTRAQ ID: 30633
CVE(CAN) ID: CVE-2008-2938
Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。
Tomcat处理请求中的编码时存在漏洞,如果在context.xml或server.xml中将allowLinking设置为 true且连接器配置为URIEncoding=UTF-8的话,则向Apache Tomcat提交恶意请求就可以通过目录遍历攻击读取服务器上的任意文件,包括/etc/passwd等。 Read more »
Posted by Hacker on 08月 14, 2008
受影响系统:
McAfee Encrypted USB Manager 3.1.0.0
不受影响系统:
McAfee Encrypted USB Manager 3.1.0.0 SP1
描述:BUGTRAQ ID: 30630
McAfee加密USB管理器是McAfee加密USB设备的统一管理软件解决方案。
McAfee加密USB管理器没有正确地处理口令的Re-use Threshold设置,如果将Re-use Threshold策略设置为非0的值的话,远程攻击者就可以执行离线口令猜测攻击。
<*来源:McAfee 链接:http://secunia.com/advisories/31433/*> Read more »
