• Attack code for Firefox zero-day goes wild

    Posted on February 19th, 2010, 11:57 am by Mauldor

    A Russian security researcher on Thursday said he has released attack code that exploits a critical vulnerability in the latest version of Mozilla’s Firefox browser.

    The exploit – which allows attackers to remotely execute malicious code on end user PCs – triggers a heap corruption vulnerability in the popular open-source browser, said Evgeny Legerov, founder of Moscow-based Intevydis. He recently added it as a module to Vulndisco, an add-on to the Immunity Canvas automated exploitation system sold to security professionals.

    Read the rest of this entry »

    Post to Twitter Tweet This Post

    No comments From the Web

  • IE Flaw Turns Your PC into Public File Server

    Posted on February 5th, 2010, 12:11 pm by Mauldor

    A vulnerability found in Internet Explorer could expose your files to the Internet.

    A security consultant on Wednesday provided a live demonstration at the Black Hat DC conference that immediately prompted a security advisory from Microsoft. Jorge Luis Alvarez Medina, the Argentina-based security consultant with Core Security Technologies, showed attendees that it was possible to use an exploit found in Internet Explorer to remotely read files on a victim’s local drive.

    Read the rest of this entry »

    Post to Twitter Tweet This Post

    No comments From the Web

  • make IE6 Die with one command

    Posted on February 5th, 2010, 12:05 pm by Mauldor

    Most of you are likely to be running one of the most recent versions of your browser of choice, be it Internet Explorer, Firefox, Chrome, Opera or Safari; so hopefully this little bug won’t take your browser down.

    It’s been discovered and now popularly reported that Internet Explorer 6 can be crashed by simply pointing the browser to:

    ms-its:%F0:

    Those without IE6 still lingering in their systems can get a demonstration of what happens in the video after the break.

    Read the rest of this entry »

    Post to Twitter Tweet This Post

    No comments From the Web

  • Microsoft warns of new flaw in IE

    Posted on February 4th, 2010, 9:06 am by Mauldor

    Microsoft is warning users following the discovery of a new vulnerability in the Internet Explorer browser.

    The company said that the issue lies in the way Internet Explorer renders locally-stored content. If exploited, an attacker could lift user data through a specially-crafted web page. Because the flaw has yet to be patched, Microsoft would not give specific details about the vulnerability.

    Read the rest of this entry »

    Post to Twitter Tweet This Post

    No comments From the Web