morph3us.org

Entries from December 2005

Quicksearch

Categories

Syndication

Tagged entries

Gmail Account Hijacking Vulnerability

  (Thursday, December 22. 2005)
There was a vulnerability in Google's Gmail service which allowed it to take control over an arbitrary mail account without requiring any cookie thefts. According to the bug spotter the vulnerability was fixed by Google on October 18.

http://www.elhacker.net/gmailbug/english_version.htm
Posted by in Security at 23:01
Defined tags for this entry:
Comments (0) | Trackbacks (0)

MS05-054 - 905915

  (Thursday, December 22. 2005)
M$ released Security Bulletin MS05-054 which resolves several newly-discovered vulnerabilities in M$ IE.
See File Download Dialog Box Manipulation Vulnerability (CAN-2005-2829), HTTPS Proxy Vulnerability (CAN-2005-2830), COM Object Instantiation Memory Corruption Vulnerability (CAN-2005-2831) and Mismatched Document Object Model Objects Memory Corruption Vulnerability (CAN-2005-1790) for details.

I updated the update pack for Windoze XP SP2..
Posted by in News, Windows at 16:25
Defined tags for this entry: ,
Comments (0) | Trackbacks (0)

Memory leak, eh?

  (Tuesday, December 20. 2005)
M$ IE consumes - after approximately ~30 seconds runtime - a huge amount of physical and virtual memory during loading a certain HTML file.

Posted by at 22:33
Comments (0) | Trackbacks (0)

Windoze CreateRemoteThread() Exploit

  (Friday, December 2. 2005)
I'm not sure if I should laugh or cry.. but I think it's better to laugh on it. :oP

Yeah, I know you do not know what I'm talking about - I speak about a recently posted "advisory" on Bugtraq (Bugtraq: securityfocus.com) with the title Microsoft Windows CreateRemoteThread Exploit.

Maybe somebody should tell this guy that Windoze has several privileges and more importantly security descriptors. That means that nobody is able to call OpenProcess() on processes which do not belong to him without having the SeDebugPrivilege or rather be able to gaining it. By default only Administrators own this mighty privilege and an Administrator is not limited to anything therefore it's bullshit to claim that it's a exploit to be able to use OpenProcess() and CreateRemoteThread().

To open a handle to another another process and obtain full access rights, you must enable the SeDebugPrivilege privilege. For more information, see Changing Privileges in a Token.

MSDN: OpenProcess()
Posted by in Windows at 05:27
Defined tags for this entry: ,
Comments (0) | Trackbacks (0)

PLSQL - Trigger for validating ISBN numbers

  (Friday, December 2. 2005)
Several time ago I used the "ISBN mod 11 Check" to write a little, crappy trigger for validating ISBN numbers. It excepts a nine numbers long ISBN number as NUMBER() and the last digit of the ISBN as CHAR().

Continue reading this entry..
Posted by in Programming at 04:40
Defined tags for this entry: , , ,
Comments (0) | Trackbacks (0)
(Page 1 of 1, totaling 5 entries)