AOA AOA AOA Folding For Team 45 AOA Files Home Front Page Become an AOA Subscriber! UserCP Calendar Memberlist FAQ Search Forum Home


Go Back   AOA > Software > Data Security
Reload this Page A new game of show and tell...sigh
Register FAQ Members List Calendar Arcade Search Today's Posts Mark Forums Read

Data Security Viruses, Firewalls and Safe computing


Reply
 
LinkBack Thread Tools Rate Thread
  #1 (permalink)  
Old 21st September, 2006, 03:59 PM
Daniel ~'s Avatar
Chief BBS Administrator
  
Join Date: September 2001
Location: Seattle Wa.
Posts: 37,099

A new game of show and tell...sigh
Written by Daniel
Thursday, 21 September 2006
Hackers Reveal Vulnerable Websites
Dark Reading

SEPTEMBER 21, 2006 | Hackers on a popular hacking message board have begun posting cross-site scripting (XSS) vulnerabilities they've found on public Websites, including those of Dell, HP, MySpace, and Photobucket, as well as security companies F5 and Acunetix.

"I think they're just looking on Website after Website and finding holes and posting to the message board," says Jeremiah Grossman, CTO for White Hat Security, who has been watching a heavy volume of XSS vulnerability posts on the "Sla.ckers" message board in the past few days. Grossman says it's unusual to see such a volume of vulnerabilities posted so publicly, plus these are "real, live Websites," he notes.

They're posting proof-of-concept code that shows how to exploit the XSS vulnerabilities, but so far there's been no sign of anything malicious, Grossman says. XSS has now surpassed buffer overflow as the number one weakness in software that attackers are exploiting. (See Cross-Site Scripting: Attackers' New Favorite Flaw.)

Front Page
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and ETERNAL."
DKE
"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur


Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

« Hackers post code for new IE attack | New vulnerability in IE »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Taipei Game Show 2007 danrok GAMES! OH YEAH! 0 11th February, 2007 11:34 AM
The PhatPat Game Show Phat Pat Random Nonsense! 4 5th July, 2004 12:48 PM
Article about the Hezbollah game show. That's right, the Hezbollah game show... mookydooky Random Nonsense! 2 19th April, 2004 03:20 PM
Crazy Game Show Contestant. mookydooky Random Nonsense! 7 10th May, 2003 08:12 PM
*sigh* Con Random Nonsense! 11 14th February, 2003 03:19 AM


All times are GMT -6. The time now is 03:11 PM.

Contact Us - Forum Home Page - Top

Copyright ©2001 - 2007, AOA Forums

Search Engine Friendly URLs by vBSEO 3.2.0