Drudge, “Crisis of Confidence in Vista”

Matt Drudge should stick to what he does best; linking to other people reporting news and repeating rumors that reputable newspapers can’t publish without confirmation. Where is the source for the information he posted today? MSFT facing early crisis of confidence in quality of VISTA; security researchers, hackers find potentially serious flaws in system… Developing… …

Continue reading ‘Drudge, “Crisis of Confidence in Vista”’ »

Holy Cow, Sunbelt Doesn’t Pile on MS

Its posts like this that keep Sunbelt in the list of blogs I read regularly. In the post they explain why a recent security writers claim “IE7 is still the spyware writers dream” is actually hype. The vulnerability is that if the bad guy has write access to your computer, he can get a dll …

Continue reading ‘Holy Cow, Sunbelt Doesn’t Pile on MS’ »

Yet Another Zero Day: Vulnerability in Vector Markup Language

Microsoft is reporting that there is a zero day in Vector Markup Language. This can be vulnerability can be exploited to install software (such as spyware) without your knowledge when your visit a website in IE or open an email in Outlook. Currently there are some workarounds and Microsoft is planning on releasing a patch …

Continue reading ‘Yet Another Zero Day: Vulnerability in Vector Markup Language’ »

More Invision Power Board Vulnerabilities

Six Apart’s free support bulletin board for Movable Type has been offline for maintenance since this past weekend. I just saw why on Bugtraq. Looks like there is another SQL injection exploit in Invision Power Board that will grant an attacker admin access. This is a vulnerability in versions prior to 2.1.7. Hopefully they’ll get …

Continue reading ‘More Invision Power Board Vulnerabilities’ »

Circuit City Discussion Board 0wned

I posted here and here on May 20th regarding exploitation of Invision Power Board bulletin board using in Movable Type’s support forum such that the BB would serve up WMF exploits via IFRAME. I even submitted the incident along with links to the Secunia writeup to SANS and it was published in the ISC on …

Continue reading ‘Circuit City Discussion Board 0wned’ »

Six Apart Forums WMF exploit

This is a follow on post on the exploitation of the Invision Forum used by Six Apart for its Movable Type free Support. The code that is serving up the WMF exploits is in an IFRAME using an obfuscated url. Using a URL deobfuscator over at IPTools.com, I found that the iframe is calling http://traffnew1.biz/dl/adv670.php …

Continue reading ‘Six Apart Forums WMF exploit’ »

Invision Board Vuln

While watching a little NASCAR this evening and IMing with friends, I decided to check out the Movable Type Support Forum. Movable Type is the blog software I use over at infosecblog.org. The second I browse to http://www.sixapart.com/movabletype/forums/index.php I notice an odd script prompt: Next I got virus alert popups from Symantec Antivirus telling me …

Continue reading ‘Invision Board Vuln’ »

Shmoocon: Network Policy enforcement

Steve Manzuik, Toby Madhat, and Chris Farrow presented a Birds of a Feather titled “Network Policy Enforcement / Network Quarantine : Latest Security Gimmick or Good Idea. NAC controls access to the network until the computer is brought into compliance. A lot of users go around the country plugging into any port available. What happens …

Continue reading ‘Shmoocon: Network Policy enforcement’ »