May 17, 2012

You are here: Home / Archives for Live Hacking

phpMyAdmin 3.3.10.2 and 3.4.3.1 Released – Multiple Vulnerabilities Fixed

July 6, 2011 By

The phpMyAdmin development team has released versions 3.3.10.2 and 3.4.3.1 of their database administration tool.

These updates are for four critical security vulnerabilities, include a session manipulation bug in Swekey authentication, a possible code injection issue in the setup script and a regular expression quoting problem in Synchronize code. With reference to the project website, these security issues could lead to the code injection and execution of arbitrary code.

Further, a directory traversal vulnerability related to the filtering of a file path in the MIME-type transformation code in these versions have been fixed.

The new versions of phpMyAdmin are available to download from the project website. phpMyAdmin is licensed under version 2 of the GNU General Public License.

Filed Under: News, Open Source Tagged With: , , , ,

Nmap 5.59BETA1 Released!

July 1, 2011 By

The Nmap development team has released Nmap 5.59BETA1. This new version includes 40 new NSE scripts, improvement in IPv6 scan, 7 new NSE protocol libraries and hundreds of bug fixes.

The new version of Nmap is able to detect services such as Apple iPhoto (DPAP) protocol probe, Zend Java Bridge probe, BackOrifice probe and GKrellM probe. Nmap service and version detection database reached to 7,375 signatures in this new version.

Nmap 5.59BETA1 source code and binary packages for Linux, Mac, and Windows are now available for download at http://nmap.org/download.html .

Nmap (Network Mapper) is a free and open source utility for security auditing. It is licensed under version 2 of the GNU General Public License.

Filed Under: News, Tools Tagged With: , ,

Security Update: WordPress 3.1.4. Released

June 30, 2011 By

The WordPress team has released WordPress 3.1.4. This release is a security update for all previous WordPress versions.

This new release fixes a security issue that could allow an intruder in Editor-level user to gain further access to the site. The vulnerability has been discovered by K. Gudinavicius and reported to the WordPress development team.

Also include in WordPress version 3.1.4 other security fixes and hardening measures.

List of Files Revised

  • readme.html
  • wp-settings.php
  • wp-includes/taxonomy.php
  • wp-includes/post.php
  • wp-includes/version.php
  • wp-includes/bookmark.php
  • wp-includes/wp-db.php
  • wp-includes/formatting.php
  • wp-includes/script-loader.php
  • wp-content/themes/twentyten/languages/twentyten.pot
  • wp-admin/includes/post.php
  • wp-admin/includes/deprecated.php
  • wp-admin/includes/update-core.php
  • wp-admin/includes/media.php
  • wp-admin/js/user-profile.dev.js
  • wp-admin/js/user-profile.js
  • wp-admin/custom-header.php
  • wp-admin/options-general.php

All WordPress website administrators are encouraged to upgrade to this latest version. You can update automatically from the Dashboard > Updates menu in your site’s admin area or download 3.1.4 directly.

Filed Under: News, WordPress Tagged With: ,

Wireshark Version 1.6.0 released

June 9, 2011 By

The Wireshark development team has released Wireshark version 1.6.0 of its open source, cross-platform network protocol analyzer.

This new version of Wireshark improves support for large files and has some new features such as the ability to export SSL session keys and SMB objects. The users can now import text dumps into Wireshark and TShark, similar to text2pcap. Further, TShark can now display iSCSI, ICMP and ICMPv6 service response times.

Wireshark is now distributed as an installation package rather than a drag-installer on OS X. The installer adds a startup item that should make it easier to capture packets. Please visit Wireshark version 1.6.0 release notes for a complete list of changes.

Wireshark is licensed under version 2 of the GNU General Public License. It can be download here.

Filed Under: News, Tools Tagged With: , , ,

June 8th, 2011 World IPv6 Day

June 8, 2011 By

Today is World IPv6 Day, major web companies such as Google, Facebook, Yahoo!, Akamai, Limelight Networks and Microsoft will enable IPv6 for 24 hours to test IPv6 in the real world.

On World IPv6 Day more than 430 companies are offering their content over IPv6 for a 24 hours. The goal of this world wide test is to motivate organizations across the related industries (Internet service providers, hardware makers, operating system vendors and web companies) to prepare their services and products for IPv6 to ensure a successful transition from IPv4 to IPv6.

IPv6 is the next generation Internet Protocol (IP) address standard to replace, the IPv4 protocol most Internet services use today. This transition helps to ensure the continued growth of the Internet as a communication platform.

The Internet Society is working with its members and other organizations to promote IPv6 transition by sharing information and helping to build the required operational capability among the Internet community and major web companies.

Filed Under: Event, News Tagged With: ,

Facebook Account Password Extractor

June 2, 2011 By

ElcomSoft has announced the release of the Facebook Password Extractor, a free tool to recover Facebooks’ user credentials that are stored or cached in popular Web browsers.

The user credentials, such as user account and passwords, are routinely stored or cached in Web browsers to speed up access to protected resources. While it is possible to extract cached passwords from each of the popular Web browsers, it has never been an easy task. Mozilla Firefox, Apple Safari, Opera, Google Chrome and older versions of Microsoft Internet Explorer (v. 6 and earlier) use lighter security mechanisms that are easier to break. However, InternetExplorer 7, 8, and 9 employ an enhanced security model that makes extracting a cached password impossible without knowing the exact authorisation URL.

Facebook Password Extractor is the first free tool on the market to help users to recover lost and forgotten Facebook passwords from all popular Web browsers including enhanced-security Internet Explorer 7 to 9. This free for personal use (non-commercial) utility can instantly reveal cached login and password information to Facebook accounts. Supporting all versions of Microsoft Internet Explorer including IE9, Mozilla Firefox including Firefox 4, Apple Safari up to version 5, Opera up to version 11, and Google Chrome up to version 11, Facebook Password Extractor is the first free Facebook recovery tool to display multiple Facebook logins and passwords instantly and automatically.

Facebook Password Extractor supports the enhanced security model used in Internet Explorer 7 onwards, by including a small database containing exact Web addresses of all possible Facebook login pages.

Facebook Password Extractor can be downloaded now.

Filed Under: Cryptography, Tools Tagged With: , , ,

Apache 2.2.19 Released: Security Update and Bug-fix

May 24, 2011 By

The Apache HTTP Server Project team released the new version 2.2.19 of the Apache HTTP Server (httpd).

This new version is a security update and bug-fix release to address CVE-2011-1928 and CVE-2011-0419 DoS vulnerabilities. This release also corrects a versioning incompatibility in 2.2.18 and it is a major release of the stable branch, and represents the best available version of Apache HTTP Server according to the project’s website.

The Apache 2.2.19 includes some new features such as Smart Filtering, Improved Caching, AJP Proxy, Proxy Load Balancing, Graceful Shutdown support, Large File Support, the Event MPM, and refactored Authentication/Authorization.

This new release includes the Apache Portable Runtime (APR) version 1.4.5 and APR Utility Library (APR-util) version 1.3.12, bundled with the tar and zip distributions. The APR libraries libapr and libaprutil (and on Win32, libapriconv version 1.2.1) must all be updated to ensure binary compatibility and address many known security and platform bugs.

Apache HTTP Server 2.2.19 is available for download here.

 

Filed Under: Apache, Security, Vulnerability Tagged With: , , , ,

Netsparker Version 1.9.0.5 Released

May 13, 2011 By

Mavituna Security Ltd has released a new version of Netsparker, Web Application Security Scanner. According to Mavituna Security blog, the Netsparker version 1.9.0.5 has two new security tests and many new features as follow:

New Redirect Tests

This release introduces 2 new security tests, which confirm whether redirects in the web application are working as expected. If the application sends a redirect back but keeps processing the page this generally indicates a bug. The impact of the bug can vary from “Authentication Bypass “ to a simple forgotten line in the code. However, it almost always indicates a bug that needs to be addressed.

New Features

  • Microsoft Live ID, SSO Authentication Support
  • Vulnerability Summary added to reports
  • Summary Report added to Sitemap. When you click name of the website that you are scanning from the sitemap Netsparker now shows a summary report of the current scan.

Improvements on Security Tests

  • Blind SQL Injection coverage improved
  • Protocol-agnostic Open Redirection checks added
  • LFI security test coverage improved
  • Version information automatically added to all Error Based SQL Injection issues now
  • New XSS checks added to bypass blacklists

Other Improvements and Bug Fixes

  • A Form Parsing bug fixed in Text Parser
  • An error log in Blind Command Injection Engine fixed
  • Some URI Based XSS issues were reported multiple times
  • Minor bugs fixed in the Detailed and XML Reports
  • Typo fixed in CSV Report
  • Set-Cookie headers wasn’t working properly in Redirects
  • Netsparker now supports multiple set-cookies with same cookie name
  • Anti-CSRF token support improved for Form Authentication
  • A bug fixed in profile save with NTLM authentication
  • Naming in certain vulnerabilities changed. New naming uses “Confirmed”, “[Probable]” and “[Possible]”.
  • Several bugs about JavaScript parsing and Form Authentication addressed

Visit Mavituna Security website for more information and educational videos.

 

Source & Picture: mavitunasecurity.com

Filed Under: Penetration Test, Tools Tagged With: , , ,

NetScanTools Pro version 11 Released

April 18, 2011 By

Northwest Performance Software has announced the release of NetScanTools Pro Version 11. This network discovery and information gathering toolkit has a long history of use for ethical hacking and penetration testing.

NetScanTools Pro provides information about IP addresses, host-names, domain names, email addresses and URLs. It includes tools for active discovery, passive discovery, packet capture and packet generation as well as tools designed to retrieve information from third parties like its extensive DNS toolset and Whois tool.

NetScanToolsPro now supports IP version 6 and has a new improved GUI. New tools in NetScanToolsPro 11 include Connection Monitor, MAC Address to Manufacturer, Network Interfaces – Wireless, Routing Table – IPV4, and SNMP Scanner Tool for SNMPv3.

You can download the free version of NetScanTools Pro here.

NetScanTools is a registered trademark of Northwest Performance Software, Inc.

Filed Under: Tools Tagged With: , , ,

CollabNet ScrumWorks Basic Server transmits credential information in plaintext

February 6, 2011 By

The communication between the CollabNet ScrumWorks Basic Server and CollabNet ScrumWorks Desktop Client is transmitting credential information in plaintext.

With reference to US-CERT vulnerability note (VU#547167), The CollabNet ScrumWorks Basic Server communicates with the CollabNet ScrumWorks Desktop Client using unencrypted java objects. These unencrypted java objects contain the username and password of the active user or (by calling specific functions) all users on the CollabNet ScrumWorks Basic Server.

An additional vulnerability exists in CollabNet ScrumWorks where the ScrumWorks Basic Server stores unencrypted client username and passwords in its internal database.

The vulnerability has been reported by David Elze from Daimler TSS Technical Security.

Filed Under: Vulnerability Tagged With: , ,
« Older Posts
Newer Posts »