|
|
Si vous voulez bloquer ce service sur vos fils RSS
Si vous voulez nous contacter ou nous proposer un fil RSS
Menu > Articles de la revue de presse : - l'ensemble [ tous | francophone] - par mots clé [ tous] - par site [ tous] - le tagwall [ voir] - Top bi-hebdo de la revue de presse [ Voir]
Présentation : As the 2008 ends and 2009 begins, I hope everyone will have a fun and safe holiday celebration. 2008, for a lot of people, certainly could have been better, but we all should have confidence that 2009 will bring many better and great things. I myself have research several goals and hope to continue my education and happy, healthy lifestyle. I was activex fuzzing on random computers again haha and got a funny crash on wscript on vista while fuzzing Microsoft Money 2006. This is not the first time fuzzing has made wscript.exe have 'errors'... C Program Files Microsoft Money 2006 MNYCoreFiles prtstb06.dll Setting 'Startup' to 0 seems to pull the trigger. ACCESS VIOLATION MOV ECX, ESI 30 I was looking through the current exploits for the XML buffer overflow for Internet Explorer and some old skylined code and decided to code one that hits up a bindshell on Vista SP1.. so I did. The core concepts and exploitation techniques came from other available codes by skylined muts krafty, thanks goes to them. My win32 smashing techniques are limited but always improving so sorry if the code is off or not up to par. I have discovered a memory leak in Libxul. Libxul provides an API for XUL apps Gecko embedders, and Gecko of course is the rendering engine of many mozilla products, including firefox, and also lots of other browsers. The effects of triggering this bug may not be a crash or fault, but huge memory allocation. It has, in my tests and others, consumed the target browser, rendering it unuseable. Safari also hits an error with WebKit when processing fuzz data... Codes for libxul and webkit are available now. bf2 Browser Fuzzer 2 , the next generation development of my earlier work bf, Browser Fuzzer , has been quite busy. Not all of the bugs it uncovers will be public or discussed here, but many will. Browser Fuzzer 2 has been completely redesigned and rewritten to cover huge bases. It fuzzes CSS, DOM, HTML, and JavaScript. It has been a product of many hours of R D and strong motivation. It has ripped through nearly every browser available. I am undecided as to when it will be released, if I release it at all
Les mots clés de la revue de presse pour cet article : research
Les videos sur SecuObs pour les mots clés : research
Les éléments de la revue Twitter pour les mots clé : research
Les derniers articles du site "Jeremy's Computer Security Blog" :
- What did they fix
- Adobe Flash Temporary Filename Scheme
- Reverse Engineering File Formats
- Browser Fuzzer 3
- Writing Code that Breaks Code
- Mozilla Code sighs
- From Static Analysis to 0day Exploit
- Some vendors are 'unconcerned'
- Firefox Local Download Manager Vulnerability
- Desktop Management Interface DMI
Menu > Articles de la revue de presse : - l'ensemble [ tous | francophone] - par mots clé [ tous] - par site [ tous] - le tagwall [ voir] - Top bi-hebdo de la revue de presse [ Voir]
Si vous voulez bloquer ce service sur vos fils RSS :
- avec iptables "iptables -A INPUT -s 88.191.75.173 --dport 80 -j DROP"
- avec ipfw et wipfw "ipfw add deny from 88.191.75.173 to any 80"
- Nous contacter par mail
| Mini-Tagwall des articles publiés sur SecuObs : | | | | sécurité, exploit, windows, attaque, outil, microsoft, réseau, audit, metasploit, vulnérabilité, système, virus, internet, usbsploit, données, source, linux, protocol, présentation, scanne, réseaux, scanner, bluetooth, conférence, reverse, shell, meterpreter, vista, rootkit, détection, mobile, security, malicieux, engineering, téléphone, paquet, trames, https, noyau, utilisant, intel, wishmaster, google, sysun, libre |
| Mini-Tagwall de l'annuaire video : | | | | curit, security, biomet, metasploit, biometric, cking, password, windows, botnet, defcon, tutorial, crypt, xploit, exploit, lockpicking, linux, attack, wireshark, vmware, rootkit, conference, network, shmoocon, backtrack, virus, conficker, elcom, etter, elcomsoft, server, meterpreter, openvpn, ettercap, openbs, iphone, shell, openbsd, iptables, securitytube, deepsec, source, office, systm, openssh, radio |
| Mini-Tagwall des articles de la revue de presse : | | | | security, microsoft, windows, hacker, attack, network, vulnerability, google, exploit, malware, internet, remote, iphone, server, inject, patch, apple, twitter, mobile, virus, ebook, facebook, vulnérabilité, crypt, source, linux, password, intel, research, virtual, phish, access, tutorial, trojan, social, privacy, firefox, adobe, overflow, office, cisco, conficker, botnet, pirate, sécurité |
| Mini-Tagwall des Tweets de la revue Twitter : | | | | security, linux, botnet, attack, metasploit, cisco, defcon, phish, exploit, google, inject, server, firewall, network, twitter, vmware, windows, microsoft, compliance, vulnerability, python, engineering, source, kernel, crypt, social, overflow, nessus, crack, hacker, virus, iphone, patch, virtual, javascript, malware, conficker, pentest, research, email, password, adobe, apache, proxy, backtrack |
|
|
|
|
|
