Social Microblogging PRO version 1.5 suffers from a stored cross site scripting vulnerability.
Monthly Archives: January 2015
Malicious Git And Mercurial HTTP Server For CVE-2014-9390
This Metasploit module exploits CVE-2014-9390, which affects Git (versions less than 1.8.5.6, 1.9.5, 2.0.5, 2.1.4 and 2.2.1) and Mercurial (versions less than 3.2.3) and describes three vulnerabilities.
Police close in on Bitcoin fraudsters who stole $370m in Mt Gox collapse
Police are closing in on thieves who stole Bitcoin valued at $370 million during the collapse of popular exchange Mt Gox – and just 1% of the theft is believed to be the work of outside hackers.
The post Police close in on Bitcoin fraudsters who stole $370m in Mt Gox collapse appeared first on We Live Security.
Windows ahcache.sys/NtApphelpCacheControl Privilege Escalation
On Windows 8.1 update the system call NtApphelpCacheControl (the code is actually in ahcache.sys) allows application compatibility data to be cached for quick reuse when new processes are created. A normal user can query the cache but cannot add new cached entries as the operation is restricted to administrators. This is checked in the function AhcVerifyAdminContext. This function has a vulnerability where it doesn’t correctly check the impersonation token of the caller to determine if the user is an administrator. This is the proof of concept code.
Debian Security Advisory 3117-1
Debian Linux Security Advisory 3117-1 – Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development.
31C3 releases: SmartGrid & USB modems
Posted by SCADA StrangeLove on Jan 01
Slides and video from SCADA StrangeLove talks at Chaos Communication
Congress: Too Smart Grid in da Cloud and Bootkit via SMS.
http://scadastrangelove.blogspot.com/2014/12/31c3-too-smart-grid-in-da-cloud.html
Cookie Manager 0.5
Cookie Manager is a cookie stealer for XSS to find and mint cookies using PHP.
CVE-2011-5294
The SaveMessage method in the LEADeMail.LEADSmtp.20 ActiveX control in LTCML14n.dll 14.0.0.34 in Kofax e-Transactions Sender Sendbox 2.5.0.933 allows remote attackers to write to arbitrary files via a pathname in the first argument.
CVE-2011-5295
Buffer overflow in the Download method in a certain ActiveX control in MDIEEx.dll in Gogago YouTube Video Converter 1.1.6 allows remote attackers to execute arbitrary code via a long argument.
CVE-2011-5296
Cross-site scripting (XSS) vulnerability in profilo.php in Happy Chat 1.0 allows remote attackers to inject arbitrary web script or HTML via the nick parameter.