Next Page >>
classify
The Web Application Security Consortium (WASC) is pleased to announce the long awaited release of the WASC
Threat Classification v2.0. The Threat Classification is an effort to classify the weaknesses, and attacks
that can lead to the compromise of a website, its data, or its users. This document's primarily purpose is
to serve as a reference guide for common attacks and weaknesses.
Main goals
- Refine document scope, terminology, and purpose
- Update existing sections when applicable
- Add missing attacks and weaknesses
- Creation of a firm, scalable base foundation allowing for the introduction of data views allowing for various
WHID 2007-48: MSU investigating hacking incident
Reported: 17 October 2007
Occured: 09 October 2007
Incident Type: Security Breach
WASC Threat Classification: Unknown
Information including birth date and social security number of 1400
students who enrolled online to the Montana State University has been
stolen by hackers. While no technical explanation is provided, the fact
that only students who enrolled online where affected points to a web
It's not serious statement. This is known for a long time class of
vulnerability. If you didn't read WASC TC yet, then you'd better read it.
First, this is Insufficient Anti-automation vulnerability. The class
Insufficient Anti-automation is listed in WASC Threat Classification v1
(released in 2004) and in Threat Classification v2 (released in 2010). In TC
v2 it's also referenced as WASC-21.
Second, this attack is directed on the site. This hole doesn't belong to
Client-side Attacks (TC v.1), but to Logical Attacks (TC v.1) and is using
And not only Firefox (and the system) must know about it, but the attacker
also must know about it :-).
My idea was to made blocking DoS attack on Chrome (first exploit was
blocking DoS, second was blocking DoS and DoS via resources consumption).
Which I wrote about last year in my Classification of DoS vulnerabilities in
browsers (http://websecurity.com.ua/2550/). In 2008 I wrote about many
blocking DoS vulnerabilities in browsers, and this year I continued to write
about such holes, and after this one I'd write about another one soon (which
I found last year). Like these DoS vulnerabilities in Firefox, IE, Chrome
and Opera (http://websecurity.com.ua/3194/). Or like DoS vulnerability in
Classification: UNCLASSIFIED
Caveats: NONE
Please advise
Theresa
-----Original Message-----
From: nobody@cisco.com [mailto:nobody@cisco.com] On Behalf Of Cisco
Systems Product Security Incident Response Team
[ http://warvox.org ]
WarVOX is a suite of tools for exploring, classifying, and auditing
telephone systems. Unlike normal wardialing tools, WarVOX works with the
actual audio from each call and does not use a modem directly. This
model allows WarVOX to find and classify a wide range of interesting
lines, including modems, faxes, voice mail boxes, PBXs, loops, dial
tones, IVRs, and forwarders. WarVOX provides the unique ability to
classify all telephone lines in a given range, not just those connected
to modems, allowing for a comprehensive audit of a telephone system.
Vulnerability; httpd Timeout detection flaw (mod_proxy_http) CVE-2010-2068
Classification; important
Description;
A timeout detection flaw in the httpd mod_proxy_http module causes
proxied response to be sent as the response to a different request,
and potentially served to a different client, from the HTTP proxy
pool worker pipeline.
rPath Appliance Platform Linux Service 2
rPath Linux 1
rPath Linux 2
Rating: Major
Exposure Level Classification:
Indirect Deterministic Weakness
Updated Versions:
curl=conary.rpath.com@rpl:1/7.15.3-1.4-1
curl=conary.rpath.com@rpl:2/7.17.0-2.2-1
rPath Appliance Platform Linux Service 1
rPath Appliance Platform Linux Service 2
rPath Linux 2
Rating: Critical
Exposure Level Classification:
Remote Root Non-deterministic Denial of Service
Updated Versions:
hwdata=conary.rpath.com@rpl:1/0.225-0.4-1
hwdata=conary.rpath.com@rpl:2/0.225-0.1-1
hwdata=rap.rpath.com@rpath:linux-1/0.225-1-1
2010-01-01:
Versions of the FH_DATE_PAST_20XX rule released with versions of Apache
SpamAssassin 3.2.0 thru 3.2.5 will trigger on most mail with a Date header
that includes the year 2010 or later. The rule will add a score of up to
3.6 towards the spam classification of all email. You should take
corrective action immediately; there are two easy ways to correct the
problem:
Published: 2008-09-17
Products:
rPath Linux 1
Rating: Minor
Exposure Level Classification:
Indirect Deterministic Denial of Service
Updated Versions:
tshark=conary.rpath.com@rpl:1/1.0.3-0.1-1
wireshark=conary.rpath.com@rpl:1/1.0.3-0.1-1
Published: 2008-09-17
Products:
rPath Linux 2
Rating: Minor
Exposure Level Classification:
Remote User Deterministic Information Exposure
Updated Versions:
mercurial=conary.rpath.com@rpl:2/1.0.2-2-0.1
mercurial-hgk=conary.rpath.com@rpl:2/1.0.2-2-0.1
Published: 2008-09-29
Products:
rPath Linux 2
Rating: Major
Exposure Level Classification:
Remote User Deterministic Vulnerability
Updated Versions:
mono=conary.rpath.com@rpl:2/1.2.6-5-0.1
References:
Published: 2008-08-05
Products:
rPath Linux 1
Rating: Severe
Exposure Level Classification:
Remote Root Deterministic Unauthorized Access
Updated Versions:
cups=conary.rpath.com@rpl:1/1.1.23-14.8-1
rPath Issue Tracking System:
Published: 2008-08-05
Products:
rPath Linux 1
Rating: Minor
Exposure Level Classification:
Indirect User Deterministic Unauthorized Access
Updated Versions:
gaim=conary.rpath.com@rpl:1/1.5.0-4.3-1
rPath Issue Tracking System:
Products:
rPath Appliance Platform Linux Service 2
rPath Linux 2
Rating: Severe
Exposure Level Classification:
Remote Deterministic Denial of Service
Updated Versions:
openldap=conary.rpath.com@rpl:2/2.4.11-1-0.1
openldap-clients=conary.rpath.com@rpl:2/2.4.11-1-0.1
openldap-servers=conary.rpath.com@rpl:2/2.4.11-1-0.1
Products:
rPath Appliance Platform Linux Service 2
rPath Linux 2
Rating: Minor
Exposure Level Classification:
Indirect Deterministic Unauthorized Access
Updated Versions:
gvim=conary.rpath.com@rpl:2/7.1.326-0.2-1
vim=conary.rpath.com@rpl:2/7.1.326-0.2-1
vim-minimal=conary.rpath.com@rpl:2/7.1.326-0.2-1
Published: 2008-08-12
Products:
rPath Linux 2
Rating: Minor
Exposure Level Classification:
Indirect Non-deterministic Denial of Service
Updated Versions:
git=conary.rpath.com@rpl:2/1.5.6.4-1-0.1
gitweb=conary.rpath.com@rpl:2/1.5.6.4-1-0.1
rPath Appliance Platform Linux Service 2
rPath Linux 1
rPath Linux 2
Rating: Major
Exposure Level Classification:
Indirect Deterministic Unauthorized Access
Updated Versions:
idle=conary.rpath.com@rpl:1/2.4.1-20.17-1
idle=conary.rpath.com@rpl:2/2.4.4-41-0.1
python=conary.rpath.com@rpl:1/2.4.1-20.17-1
rPath Appliance Platform Linux Service 2
rPath Linux 1
rPath Linux 2
Rating: Major
Exposure Level Classification:
Indirect User Deterministic Unauthorized Access
Updated Versions:
freetype=conary.rpath.com@rpl:1/2.1.10-5.3-1
freetype=conary.rpath.com@rpl:2/2.3.6-1-0.1
Published: 2008-08-20
Products:
rPath Linux 2
Rating: Major
Exposure Level Classification:
Local Root Deterministic Privilege Escalation
Updated Versions:
postfix=conary.rpath.com@rpl:2/2.4.8-0.1-1
rPath Issue Tracking System:
AFFECTED: Client software versions are irrelevant because of server changes.
See ANALYSIS section below for details.
PLATFORM: Intel / Windows
CLASSIFICATION: Origin Validation Error (CWE-346)
RESEARCHER: Derek Callaway
IMPACT: Client-side code execution
Published: 2008-07-03
Products:
rPath Linux 2
Rating: Major
Exposure Level Classification:
Indirect User Deterministic Unauthorized Access
Updated Versions:
mercurial=conary.rpath.com@rpl:2/1.0.1-1-0.1
mercurial-hgk=conary.rpath.com@rpl:2/1.0.1-1-0.1
Published: 2008-07-03
Products:
rPath Linux 1
Rating: Major
Exposure Level Classification:
Indirect Deterministic Information Exposure
Updated Versions:
tshark=conary.rpath.com@rpl:1/1.0.1-0.1-1
wireshark=conary.rpath.com@rpl:1/1.0.1-0.1-1
Published: 2008-07-08
Products:
rPath Linux 1
Rating: Major
Exposure Level Classification:
Indirect User Deterministic Unauthorized Access
Updated Versions:
firefox=conary.rpath.com@rpl:1/2.0.0.15-0.1-1
rPath Issue Tracking System:
Published: 2008-07-08
Products:
rPath Linux 1
Rating: Minor
Exposure Level Classification:
Remote Non-deterministic Denial of Service
Updated Versions:
vsftpd=conary.rpath.com@rpl:1/2.0.3-13.4-1
rPath Issue Tracking System:
rPath Appliance Platform Linux Service 2
rPath Linux 1
rPath Linux 2
Rating: Major
Exposure Level Classification:
Remote User Deterministic Unauthorized Access
Updated Versions:
ruby=conary.rpath.com@rpl:1/1.8.6_p230-3-0.1
ruby=conary.rpath.com@rpl:2/1.8.6_p230-3-0.1
Published: 2008-07-09
Products:
rPath Linux 2
Rating: Major
Exposure Level Classification:
Indirect User Deterministic Unauthorized Access
Updated Versions:
poppler=conary.rpath.com@rpl:2/0.6.2-2-0.1
rPath Issue Tracking System:
Products:
rPath Appliance Platform Linux Service 1
rPath Linux 1
Rating: Minor
Exposure Level Classification:
Indirect User Deterministic Weakness
Updated Versions:
httpd=conary.rpath.com@rpl:1/2.0.63-0.3-1
mod_ssl=conary.rpath.com@rpl:1/2.0.63-0.3-1
Published: 2008-07-19
Products:
rPath Linux 2
Rating: Major
Exposure Level Classification:
Remote System User Deterministic Weakness
Updated Versions:
bind=conary.rpath.com@rpl:2/9.4.2_P1-2-0.1
bind-utils=conary.rpath.com@rpl:2/9.4.2_P1-2-0.1
Next Page>>
|
