-
Archive for the ‘vulnerability’ Category
- Feb 9th, 2008
-
Adobe Acrobat, Acrobat 3D & Reader Multiple Vulnerabilities
A JavaScript Buffer Overflow in Adobe Acrobat, Acrobat 3D & Reader allowed remote attacker to execute arbitrary code. The code will run with the privileges of the target user opening the PDF document. Excerpt from iDefense Public Advisory;
Adobe Reader and Acrobat implement a version of JavaScript in the EScript.api plug-in which is based on the reference implementation used in Mozilla products. One of the methods exposed allows direct control over low level features of the object, which in turn allows execution of arbitrary code.
Workaround
Disabled Adobe Reader & Acrobat JavaScript. Perform Update ↓
Update -Adobe Acrobat & Reader version 8.1.2
Adobe released version 8.1.2 of Adobe Reader, Acrobat & Acrobat 3D to address
these vulnerabilities.- Adobe Reader 7 and 8 users update to Adobe Reader 8.1.2
- Acrobat 8 users on Windows update to Acrobat 8.1.2
- Acrobat 8 users on Macintosh update to Acrobat 8.1.2
- Acrobat 3D version 8 users on Windows update to Acrobat 3D version 8.1.2
These vulnerabilities were discovered by Greg MacManus of VeriSign iDefense Labs.
- Feb 6th, 2008
-
Daily Hacking Attemps on blog.kakkoi.net - Feb 6th, 2008
Today’s we just upgrade from WordPress 2.3.2 to 2.3.3 security release. There is 21 attack (script injections) on blog.kakkoi.net from 3 known bot-herder scripts ↓. The first attacker is from 212.24.62.200 → udkado.ru masking their useragent as Googlebot (a real human?). The were playing with my 302.curie redirect page at blog.kakkoi.net/uri/. I send the attacker data to abuse network and IronPort. The next few hours we received 20 attack from the same bot-herder. They probably has a large scale of DDNS (china → korea → us ). Noticeably the scans pattern is predictable. From our Feb 5th attack all these botnet is targeting certain search keywords security, injection so we setup a honey-pot right on that particular URL.
(more…) - Feb 5th, 2008
-
Daily Hacking Attempts on blog.kakkoi.net - Feb 5th, 2008
- Feb 2nd, 2008
-
Wordpress 2.3.2 XMLRPC Exploit Unofficial Patch
This issue has been raised 4 months ago (october 2007). Certainly this is one of BadPress Ticketing Problems. Until WordPress Developer release Official securities fix (v 2.3.2.1 || 2.3.5 ?? ) You might want to try this “debatable” patch by SecuriTeam - Paul (Yabba) Jones. Note: Matt Mullenweg & the WP-Hackers is against secureTeam “hasty-patch” and their POC release. [wp-hackers] xmlrpc issue or no?.
Excerpt from Wordpress Support Forum » iframe injection problem?
Matt Mullenweg → […] I would rather not have people think they’re safe and really not be, and there is a release coming shortly anyway. […]
If anyone is scared and wants a fix NOW, they should either turn off registration (which is off by default) or delete xmlrpc.php. ~ Feb 3, 2008 - Jan 31st, 2008
-
Matt Heaton Bluehost Hostmonster CEO Hacked Again - Strike II
Being Hacked by SEO spammer is seem like a yearly events at Mattheaton.com. Matt’s WordPress blog was first hijacked 2 months ago on 26 November 2007 (according to my record). You can digg my earlier post at → Matt Heaton BlueHost HostMonster CEO Official Blog Hacked.It’s a big embarrassment for bluehost & hostmonster hosting to have their CEO’s blog being spamride every year (since 2007) . Drilling Matt Heaton’s with bad ads wont solves the Blackhat Spam issues, I will left that particulars part to my readers to speculate.
