Topics
Tags
Favorite Links
Translate
Pick Your Language
Security Books
Archives
Recent entries...
Sponsored Ads
Popular Pages
Sponsored Ads
The Web Security Mailing List

ActiveX Vulnerability Pwns MySpace, Facebook users

"A buffer overflow enabled hackers to exploit the Aurigma ActiveX image uploading software used by Facebook, MySpace and other social networking sites, " said Rachwald. "The bad news is that this exploit is being used in a hacker toolkit currently being offered for download on several Chinese language sites, meaning that novices...

Posted by Robert A. on 03/03/2008 in Incidents , IndustryNews , Vulns | Permalink | Reddit | Comments (0) | TrackBack (0) | Read more of this story...

Orkut Worm v2.0

"The Scrapkut worm uses active code injection to spread between victims and their friends on Orkut. The malicious code appears on a victim’s scrapbook, containing a link to a supposed YouTube video. People who click on the link are redirected to an external site hosting malware that's disguised as a Flash upgrade....

Posted by Robert A. on 03/03/2008 in CSRF , Incidents , Worms , XSS | Permalink | Reddit | Comments (0) | TrackBack (0) | Read more of this story...

Looking for something else or having a hard time finding a story? We recently moved things around so please use the search bar on the right!
Copyright 2000-2009 CGISecurity.com | Privacy Policy| java mailing list| resolve ip| Mailing Lists | Sony deals