Vuln Dev Mode:
(Page 32 of 75)  < Prev  27 28 29 30 31 32 33 34 35 36 37  Next >
RE: Shell: 2004-07-09
Perrymon, Josh L. (PerrymonJ bek com)
Yup.

I get the same thing with IE on XP. The shell: command will open about any
.exe or other file. However, it will not work without intervention from a
web page <A>shell:blah</A> so to speak.

But it could be used with a multi layered attack I believe.

JP

-----Original Message-----
From: Ferru

[ more ]  [ reply ]
Norton AntiVirus Remote Denial Of Service Vulnerability [Part: !!!_update] 2004-07-09
Bipin Gautam (visitbipin hotmail com)


Norton AntiVirus Remote Denial Of Service Vulnerability [Part: !!!_update]

*vulnerable [...only tested on!]

Symantec Norton AntiVirus 2003 Professional Edition

Symantec Norton AntiVirus 2002

*not vulnerable

Mcafee 7*

Mcafee 8*

Risk Impact: Medium

Remote: yes

Description:

While

[ more ]  [ reply ]
RE: help:// protocol in Windows XP Prof 2004-07-08
Calderon, Juan Carlos (GE Commercial Finance, NonGE) (juan calderon ge com) (2 replies)
<.a href="javascript:loadWin()" title="help://www.product.com/help" onmouseover="window.status='help://www.product.com/help';return true" onmouseout="window.status='';return true">

just my two cents

-----Original Message-----
From: Jordan Cole (stilist) [mailto:stilist (at) gmail (dot) com [email concealed]]
Sent: Wednesday,

[ more ]  [ reply ]
RE: help:// protocol in Windows XP Prof 2004-07-08
Rocky Heckman (rocky he g-wizinnovations com)
RE: help:// protocol in Windows XP Prof 2004-07-09
Tyler Durden (fadingreality414 yahoo com)
RE: help:// protocol in Windows XP Prof 2004-07-08
Weltha, Nick [ADM] (nickw iastate edu)
Another oddity is typing something like "tesee://google.com" then
hitting enter in the status bar will pop up a telnet connection to
Google. I believe it just arbitrarily decides what the best protocol is
for what you write.

Nick Weltha
Systems
Office of Admissions
310 Alumni Hall
Iowa State Univ

[ more ]  [ reply ]
Shell: 2004-07-08
Perrymon, Josh L. (PerrymonJ bek com) (2 replies)
What do you think about this in Mozilla OR IE?

shell:windows\system32\cmd.exe

I can't seem to pass any variables to it though because it bombs but my
syntax may be incorrect.

Joshua Perrymon
Sr. Network Security Consultant
PGP Fingerprint
51B8 01AC E58B 9BFE D57D 8EF6 C0B2 DECF EC20 6021

****

[ more ]  [ reply ]
RE: Shell: 2004-07-09
Ferruh Mavituna (ferruh mavituna com)
Re: Shell: 2004-07-08
steve johnson (sjohns11 gl umbc edu) (2 replies)
Re: Shell: 2004-07-08
Seth Chromick (seth chromick earthlink net)
Re: Shell: 2004-07-08
mike genxweb net
Re: help:// protocol in Windows XP Prof 2004-07-08
Bartosz Kwitkowski (bartosz wb pl)
In-Reply-To: <20040706093616.16342.qmail (at) www.securityfocus (dot) com [email concealed]>

Microsoft Security says about it:

"It is a usability feature where IE is trying to "guess" the intended protocol. For example, "httq:" or "htt?" where "?" is any character will work as well. It does look funny but the results are t

[ more ]  [ reply ]
help:// protocol in Windows XP Prof 2004-07-06
Bartosz Kwitkowski (bartosz wb pl) (4 replies)


There is funny thing in Internet Explorer 6.0 - Windows XP Professional (fully patched).

When you are writing address in IE you can replace http:// by help://

example:

http://wb.pl/bartosz = help://wb.pl/bartosz

and than hit <ENTER>... Page will open...

other...

help:

[ more ]  [ reply ]
Re: help:// protocol in Windows XP Prof 2004-07-11
pingywon MCSE (pingywon gmail com) (1 replies)
Re: help:// protocol in Windows XP Prof 2004-07-11
Bartosz Kwitkowski (bartosz wb pl)
Re: help:// protocol in Windows XP Prof 2004-07-08
Jordan Cole (stilist) (stilist gmail com)
Re: help:// protocol in Windows XP Prof 2004-07-07
Derek Kwan (Derek Kwan ca) (1 replies)
RE: help:// protocol in Windows XP Prof 2004-07-08
Lucas Valdeón (lvaldeon matchmind es)
Re: help:// protocol in Windows XP Prof 2004-07-07
NETKOJI (netkoji poczta onet pl) (2 replies)
RE: help:// protocol in Windows XP Prof 2004-07-08
Rocky Heckman (rocky he g-wizinnovations com)
Re: help:// protocol in Windows XP Prof 2004-07-08
Jordan Cole (stilist) (stilist gmail com)
status-bar SHATTER attack 2004-07-07
bil_912 (bil_912 coolgoose com) (1 replies)
>
>
> hello all,
>
> recently i was playing with >> STATUS-BAR <<
shatter-attack-code provided
> by brett.moore (at) security-assessment (dot) com [email concealed]
>
> the code with tiny modifications is attached here.
>
> the problem is ...
>
> xp.sp1 TOP SEH at 0x77ed73b4 was getting overwritten as 0x77ed74c0 where my

[ more ]  [ reply ]
RE: status-bar SHATTER attack 2004-07-07
Brett Moore (brett moore security-assessment com)
pacsec.jp/core04 Call For Papers 2004-06-18
Dragos Ruiu (dr kyx net)
(Japanese Below)

CALL FOR PAPERS

PacSec.JP (Pacific Security)
http://pacsec.jp

Announcing the opportunity to submit papers for the PacSec/core03
network security training conference. The conference will be held
November 11/12th in Tokyo. The conference focuses on emerging
information security

[ more ]  [ reply ]
TOORCON 2004: Call For Papers 2004-06-15
cfp toorcon org
TOORCON 2004 CALL FOR PAPERS - issued June 14th 2004

Papers and presentations are being accepted for ToorCon 2004 to be held
at the Manchester Grand Hyatt in San Diego, CA on September 24th-26th.
Please email your submissions to cfp (at) toorcon (dot) org [email concealed], submissions will be accepted
until August 15th 2004.

[ more ]  [ reply ]
Re: Antivirus/Trojan/Spyware scanners DoS [summary] 2004-06-15
Bipin Gautam (visitbipin hotmail com) (1 replies)
In-Reply-To: <20040614003349.4049.qmail (at) www.securityfocus (dot) com [email concealed]>

>> http://www.geocities.com/visitbipin/SERVER_dwn.zip

Note: If you download such archives from an

internet loaction, or 'copy/paste' such files from a

distination. Those Vulnerable "Antivirus Softwares"

with their auto-protect

[ more ]  [ reply ]
Re: Antivirus/Trojan/Spyware scanners DoS [summary] 2004-06-16
npguy (npguy websurfer com np)
Acrobat Reader overhead 2004-06-11
Lee Sheng (momosisco hotmail com)


If you open pdf files using internet explorer. Internet explorer most
properly
will save a temporary file(acr****.tmp) into your C:\Documents and
Settings\%user%\Local Settings\Temp. If the temporary acrobat reader save up
to
1000 and greater than that, it will cause you cpu usage to 100% while

[ more ]  [ reply ]
Antivirus/Trojan/Spyware scanners DoS [summary] 2004-06-14
Bipin Gautam (visitbipin hotmail com)


> Hello everybody,

>

> I wounder how many Antivirus/Trojan/Spyware scanners

> will choak while having a manual scan of

> the

> file:

>

> http://www.geocities.com/visitbipin/SERVER_dwn.zip

>

> I was woundering, what would be the results if such

> file gets stucked in an "AV gateway" (O

[ more ]  [ reply ]
openssh buffer_append_space vulnerability 2004-06-11
Joseph Blade (jblade27 comcast net)
Good Morning To All,

Long time listener, first time caller.

Has anyone in the community seen any progress in the
buffer_append_space() vulnerability, which sets the buffer's
allocated int when it isn't allocated?

The last process that I used last September was to use data compression
to crash bu

[ more ]  [ reply ]
(Page 32 of 75)  < Prev  27 28 29 30 31 32 33 34 35 36 37  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus