31 month ago
kayodeok : Microsoft Security Advisory (914457): Possible Vulnerability in Windows Service ACLs - Microsoft is aware of published information and proof-of-concept code that that attempts to exploit overly permissive access controls on third- party (i.e., non-Microsoft) application services.
# copy
34 month ago
kayodeok : Microsoft Security Advisory (911302): Vulnerability in the way Internet Explorer Handles onLoad Events Could Allow Remote Code Execution - Microsoft is investigating new public reports of vulnerability in Microsoft Internet Explorer on Microsoft Windows 98, on Windows 98 Second Edition, on Windows Millennium Edition, on Windows 2000 Service Pack 4, and on Windows XP Service Pack 2
# copy
34 month ago
kayodeok : Zero-Day Exploit Targets IE - Exploit code for a critical flaw in fully patched versions of Microsoft Corp.'s Internet Explorer browser has been released on the Internet, putting millions of Web surfers at risk of computer hijack attacks
# copy
37 month ago
kayodeok : Registry Hiding (Proof of Concept) - Microsoft Registry Editor for 2K and XP (Regedt32.exe) has a nice design flaw that naturally allows it to hide registry information from viewing and editing even from users with administrative access
# copy
37 month ago
kayodeok : Microsoft Security Advisory (899588): Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588) - Microsoft is aware that detailed exploit code has been published on the Internet for the vulnerability that is addressed by Microsoft security bulletin MS05-039: Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (
# copy
38 month ago
kayodeok : Monad and the "First Vista Virus" - "First Vista Virus" is a misleading title, as it's an issue that affects any vehicle for any executable code on any operating system
# copy
38 month ago
kayodeok : Danom: proof-of-concept viruses for Microsoft Command Shell codename Monad - Danom viruses are proof-of-concept viruses for Microsoft Command Shell codename Monad. They do infect other Monad scripts, although there is also a cross infector for .MSH, .BAT and .CMD files. It is not yet clear if Monad will ship with Vista
# copy
38 month ago
kayodeok : First "Vista Virus" found - An Austrian virus writer has published five simple viruses targeting Microsoft MSH in a virus writing magazine.
# copy
38 month ago
kayodeok : 'Shadow Walker' Pushes Envelope for Stealth Rootkits - "A pair of researchers take the stage at the Black Hat Briefings to show off a prototype rootkit that uses memory subversion techniques [...] The rootkit uses DKOM (Direct Kernel Object Manipulation) to fake out the Windows Event Viewer to make forensics
# copy
38 month ago
kayodeok : Fingernails store data - Researchers from the University of Tokushima and Hokkaido University have demonstrated that it is possible to read data written into a human fingernail using a laser, much like information is written on a rewritable compact disc
# copy
40 month ago
kayodeok : Mozilla Suite and Firefox Script objects Command Execution Exploit - Time to upgrade to Firefox 1.04 / Mozilla 1.78. see original advisory: http://www.frsirt.com/english/advisories/2005/0530
# copy
40 month ago
kayodeok : Mozilla Firefox 1.0.3 view-source:javascript url Code Execution Exploit - Time to upgrade to Firefox 1.04. See original advisory: http://www.frsirt.com/english/advisories/2005/0530
# copy
40 month ago
kayodeok : Mozilla Firefox "view-source:" Protocol Cross Domain Scripting Exploit - Time to upgrade to Firefox 1.04. See original advisory: http://www.frsirt.com/english/advisories/2005/0530
# copy
41 month ago
kayodeok : Firefox Remote Compromise Technical Details - "To understand why the example works, one must understand the basics of how Firefox works. Everything you see in firefox is essentially a webpage being rendered by a compiler. This is what the gui is made of, and this is why firefox is so easy to customiz
# copy
41 month ago
kayodeok : Firefox 1.0.3 0day Vulnerability Leaks with Proof of Concept - The reason for the disclosure was that it appears the researcher's machine was compromised and the details stolen
# copy
41 month ago
kayodeok : Mozilla Firefox Two Vulnerabilities - Two vulnerabilities have been discovered in Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a user's system
# copy
41 month ago
kayodeok : Proof of Concept: Mozilla Firefox 1.0.3 Remote Arbitrary Code Execution Exploit - This is a 0day exploit/vulnerability (unpatched). If a user clicks anywhere on a specially crafted page, this code will automatically create and execute a malicious batch/exe file.
# copy
42 month ago
kayodeok : Using Image File Execution options as an Attack Vector on Windows - Spyware doesn't have to worry about trying to hide and start execution in the Run/RunOnce keys when they could simply tag to a common exe that starts up, and on startup spawn the real executable after doing its bidding. I will leave that to the reader to
# copy
42 month ago
kayodeok : Page Hijack Exploit: 302, redirects and Google - 302 Exploit: How somebody elses page can appear instead of your page in the search engines
Paul Hammond : Page Hijack Exploit: 302, redirects and Google - How somebody elses page can appear instead of your page in the search engines
# copy
