[FD] DAVOSET v.1.2.5

Hello participants of Mailing List. After making public release of DAVOSET (http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/2013-June/008850.html), I've made next update of the software. DAVOSET v.1.2.5 was released - DDoS attacks via other sites execution tool (http://websec

Re: [FD] Google Chrome Address Spoofing (Request For Comment)

2015-06-30 3:08 GMT-03:00 David Leo : > Impact: > The "click to verify" thing is completely broken... > Anyone can be "BBB Accredited Business" etc. > You can make whitehouse.gov display "We love Islamic State" :-) Did not work for me. I have been redirected to Oracle's actual website and then to

Re: [FD] Google Chrome Address Spoofing (Request For Comment)

Tested on Google Chrome 43.0.2357.130 (64-bit) (Linux) and it works. I do not think it is some kind of DoS attack, it is clearly URL spoofing vulnerability. Perhaps, your report does not clarify the vulnerability precisely.  Chrome Rewards – Application Security – Google |   | |   |   |   |   |

[FD] Google Chrome Address Spoofing (Request For Comment)

Impact: The "click to verify" thing is completely broken... Anyone can be "BBB Accredited Business" etc. You can make whitehouse.gov display "We love Islamic State" :-) Note: No user interaction on the fake page. Code: * index.html function next() { w.location.replace('[FD] Broken, Abandoned, and Forgotten Code, Part 9

2015-06-30 Thread Zach C

Part 9 of Broken, Abandoned, and Forgotten Code is up! In this part, we fill out the ambit firmware header enough to satisfy upnpd's loose validation and have it write the image to flash. Additionally, we have to binary patch upnpd to get it to play nicely in QEMU, since there's no physical flash m

[FD] Siemens, Climatix BACnet/IP communication module, Vulnerabilities

2015-06-30 Thread Fran

I. VULNERABILITIES - 1. Reflected XSS Attack vulnerability in Climatix BACnet/IP communication module from Siemens 2. Unrestricted upload of files II. BACKGROUND - BACnet/IP communication modules help to integrate controller types POL6XX of the C

[FD] CVE-2015-4674 - TimeDoctor autoupdate over plain-HTTP

2015-06-30 Thread Fernando Muñoz

TimeDoctor claims to be a software that helps to improve the productivity of teams, reduce time spent on distractions [1] Vulnerability: TimeDoctor autoupdate feature downloads and executes files over plain HTTP and doesn't perform any check with the files. An attacker with MITM capabilities (i.e.

[FD] ManageEngine Password Manager Pro 8.1 SQL Injection vulnerability

2015-06-30 Thread Blazej Adamczyk

Title: ManageEngine Password Manager Pro SQL 8.1 Injection vulnerability Author: Blazej Adamczyk (br0x) Date: 2015-06-30 Download site: https://www.manageengine.com/products/passwordmanagerpro/download.html Version: 8.1 and below Vendor: https://www.manageengine.com/products/passwordmanagerpro/ Ve