|
Many exploits are written every year, a lot of them are made public on sites like securityfocus.com which is owned by the anti-virus company McAfee . The possession of exploit code is illegal in some countries, is this fair? Does it keep us safe? Or is...
Started by The Rook on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
How can I check this without an exploit test.
In my experience, exploit code can sometimes be the only way non-vulnerable to previously found security flaws.
To previously found security problems.
|
|
Assume that an attacker controls the variable $untrusted_user_supplied_path . Is the following Perl code exploitable?
my $untrusted_user_supplied_path = ... if ($untrusted_user_supplied_path =~ /\.\./) { die("Tries to escape homedir."); } my $base_path...
Started by knorv on
, 6 posts
by 6 people.
Answer Snippets (Read the full thread at stackoverflow):
You're....
There don't have to be "flaws" in that code so much as opportunities to be canonical, though.
Whether it is exploitable or not depends on the code which presents the file to the user.
Might not be too worried about that.
|
|
How are buffer overflows used to exploit computers?
How is one able to execute arbitrary code simply by causing stack or heap overflows?
I understand that portions of the programs memory are overwritten that aren't supposed to be, but I don't see how ...
Started by Simucal on
, 6 posts
by 6 people.
Answer Snippets (Read the full thread at stackoverflow):
Heap overflows....
That's for buffer overflows.
Edit: You the CPU to jump to a particular memory location, the one where y ou put your own code.
An error case in bad code that can't be exploited for anything outside of a crash (DoS).
|
Ask your Facebook Friends
|
I came across the following exploit due to a warning from my AV software. It originated from an adserver delivering banner ads on one of my sites.
I have retrieved the content with Wget and copied to pastebin.
http://pastebin.com/m6fa38fac
[Warning: Link...
Started by mr-euro on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
code
eval = alert;
in firefox with firebug, i solved it like this:
var lpsy16=lpsy; eval = console.log.
|
|
According to the Internet Storm Center, there seems to be a SSH 0-day exploit out there.
There is some proof of concept code in here and some reference:
http://secer.org/hacktools/0day-openssh-remote-exploit.html http://isc.sans.org/diary.html?storyid...
Started by sucuri on
, 10 posts
by 9 people.
Answer Snippets (Read the full thread at serverfault):
P tcp --dport 22 -j DROP
According so the SANS post, this exploit does not work against current.
|
|
On a page from a website (one of ours) I can enter in the url the following code:
javascript:createNewWindow('Something', 100, 100, 'Text')
Is there a way someone can exploit this?
function createNewWindow(url, widthIn, heightIn, title) { var strOptions...
Started by osp70 on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at stackoverflow):
If your comment about adding the code means that you were able understand the risks of that code....
Given that code, the createNewWindow() script isn't any more vulnerable than the raw javascript don't need to be concerned about that.
|
|
I'm pretty green still when it comes to web programming, I've spent most of my time on client applications. So I'm curious about the common exploits I should fear/test for in my site.
Started by Brian Leahy on
, 14 posts
by 14 people.
Answer Snippets (Read the full thread at stackoverflow):
Be looking after involve code injection into your application, so XSS (Cross Site Scripting) and SQL sure that if your application allows for a user to inject any code whatsoever, it's regulated Execution Code vulnerable to remote....
|
|
Our IT services firm is proposing a network reconfiguration to use the IP range 10.10.150.1 – 10.10.150.254 internally as they state the current IP scheme using manufacturer defaults of 192.168.1.x is "making it to easy to exploit".
Is this true? How ...
Started by Michael Glenn on
, 17 posts
by 17 people.
Answer Snippets (Read the full thread at serverfault):
The days of hard-coded viruses....
Any exploit worth its weight will be using all three private subnet ranges isn't covered...
My guess would be that some drive-by router exploit scripts are hardcoded to go looking not think this is likely.
|
|
Quote: : Cybercriminals are quick to capitalize on the announcement of a newly discovered vulnerability CVE-2011-3544 in Java. ZDNet
Web malware exploitation kits updated with new Java exploit | ZDNet
Yet another Java exploit.
Started by lehnerus2000 on
, 10 posts
by 5 people.
Answer Snippets (Read the full thread at sevenforums):
Google codeplex had malware on it for over a month!
Malware hosted on Google Code project site | ZDNet
More nasties found....
Linux 17 days ".
Even your code is never bulletproof.
It or not.
|
|
What ways are there for detecting exploits in PHP/MySQL web applications (checking for certain characters or pieces of codes in the GET, POST, COOKIE arrays / using a library with a database that has all the patterns for common exploits, if any exist?...
Started by TheMagician on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at stackoverflow):
Function look_for_code_and_mail_admin($str) { $allowed_tags = "<a>.
Just use strip_tags() on all $_REQUEST and $_COOKIE vars to take care of code showing up something like this though.
|
