Exploits & Vulnerabilities | MyAntiSpyware - Part 6

MyAntiSpyware

IE flaw lets intruders into Google Desktop

Myantispyware team December 3, 2005 No Comment Exploits & Vulnerabilities

A security researcher in Israel has found a way to steal information from unwitting users of Google’s desktop search tool by exploiting an unpatched flaw in Microsoft’s ubiquitous Internet Explorer. There is a bug in the way the Web browser processes CSS rules, Matan Gillon wrote in a description of his hack posted on Wednesday.

Read more »
More exploits out for Windows flaws

Myantispyware team December 3, 2005 No Comment Exploits & Vulnerabilities, Malware removal

Two new pieces of computer code that could be used in cyberattacks on Windows users were posted on the Web on Wednesday and Thursday. The exploit posted Thursday is another that could allow a remote attacker to gain complete control over a vulnerable computer. The code takes advantage of a flaw in a Windows component

Read more »
Vulnerability in the Internet Explorer

Myantispyware team December 2, 2005 No Comment Exploits & Vulnerabilities

Week ago the UK group “Computer Terrorism” released a proof of concept exploit against patched versions of Internet Explorer. Microsoft is investigating this report of a vulnerability in Microsoft Internet Explorer on Microsoft Windows 98, on Windows 98 Second Edition, on Windows Millennium Edition, on Windows 2000 Service Pack 4, on Windows XP Service Pack

Read more »
MS05-051 POC Exploit

Myantispyware team November 27, 2005 No Comment Exploits & Vulnerabilities

A proof of concept (PoC) exploit was released against systems vulnerable to MS05-051. MS05-051 was released in October. The vulnerability does allow for arbitrary code execution in systems with the Microsoft Distriuted Transaction Coordinator (MSDTC) enabled. In order to disable MSDTC, enter the following command: sc stop MSDTC & sc config MSDTC start= disabled By

Read more »
SANS Top 20 Internet Security Vulnerabilities

Myantispyware team November 23, 2005 No Comment Exploits & Vulnerabilities

This year’s SANS Top 20 Internet Security Vulnerabilities were announced this morning. Details are at http://www.sans.org/top20. You will see that the format has changed a bit this year. Top Vulnerabilities in Windows Systems W1. Windows Services W2. Internet Explorer W3. Windows Libraries W4. Microsoft Office and Outlook Express W5. Windows Configuration Weaknesses Top Vulnerabilities in

Read more »
Internet Explorer exploit

Myantispyware team November 22, 2005 No Comment Exploits & Vulnerabilities

the UK group “Computer Terrorism” released a proof of concept exploit against patched versions of Internet Explorer. We verified that the code is working on a fully patched Windows XP system with default configuration. The bug uses a problem in the javascript ‘Window()’ function, if run from ‘onload’. ‘onload’ is an argument to the HTML

Read more »
Windows XP SP1 and Windows 2000 DoS vulnerability

Myantispyware team November 21, 2005 No Comment Exploits & Vulnerabilities

A potential vulnerability in Windows 2000 Service Pack 4 and Windows XP Service Pack 1 has been publicly revealed by the French Security Incident Response Team. The organisation has drawn the ire of Microsoft by publishing details of a proof-of-concept exploit that targets the vulnerability. According to the author, a specially crafted request to upnp_getdevicelist

Read more »
Malicious .biz site and browser vulnerabilities

Myantispyware team November 20, 2005 2 Comments Exploits & Vulnerabilities

A user visited a webpage and got redirected to hxxp://iframebiz.biz/dl/adv443.php (tt changed to xx to protect anyone from getting there…) Among other things… the page was obfuscated and many malicious bits of software loaded through javascript…. such as hxxp://iframebiz.biz/dl/adv443/sploit.anr and hxxp://iframebiz.biz/dl/loadadv443.exe and hxxp://iframebiz.biz/dl/adv443.hta and some sort of loaderadv443.jar and… http://iframebiz.biz/dl/adv443/x.chm It looks like a bunch

Read more »

Previous
1
2
…
5
6