some months ago i coded a perl script. this perl script is a Cpanel BruteForce .
some visitors (damn to skidds) mail me about “how to use it ?” or “how can i found password list for it?”.
this script have not special password list and for example you can use milw0rm password list . and if this script have low speed use php script. and can other information about usage in script.
[PLEASE DON'T ASK ME ABOUT THIS SCRIPT ]
=====
Site again started with new desing www.hessamx.net
Month of PHP Bugs started and now have 13 advisrories :
1 – PHP 4 Userland ZVAL Reference Counter Overflow Vulnerability
2 – PHP Executor Deep Recursion Stack Overflow
3 – PHP Variable Destructor Deep Recursion Stack Overflow
4 – PHP 4 unserialize() ZVAL Reference Counter Overflow
5 – PHP unserialize() 64 bit Array Creation Denial of Service Vulnerability
6 – Zend Platform Insecure File Permission Local Root Vulnerability
7 – Zend Platform ini_modifier Local Root Vulnerability
8 – PHP 4 phpinfo() XSS Vulnerability (Deja-vu) (!!)
9 – PHP wddx_deserialize() String Append Buffer Overflow Vulnerability
10 – PHP php_binary Session Deserialization Information Leak Vulnerability
11 – PHP WDDX Session Deserialization Information Leak Vulnerability
12 – mod_security POST Rules Bypass Vulnerability
13 – PHP 4 Ovrimos Extension Multiple Vulnerabilities
this text edited .
————————
SimSafer is a Small Software To Safe your PC (windows xp sp1 & sp2 ) .
Is not firewall or anti-spy or Stable anti-virus .
It Is emergency Software :
1- IT do fixed 45 security Option In windows
2- Have Live Antivirus (with bitdefender Engine) & Delete Viruses from Kernel Level & Mark kernel Class like antibody .
3- check MS windows security patchs and …
4- (In RC3 ) Check Open Port & Allow manage IT .
Simsafer can active your windows for “auto-update” . it is free for all and it can run on all windows xp.
enjoy …
SimSafer RC2 Download : http://simorgh-ev.com/download/Setup.exe
Screenshot 1 (start), ScreenShot 2(check patchs)
Simorgh Security Team
My website started again .
www.hessamx.net
after long time uninformed volume 6 has been released !!
read this volume on Uninformed.org
iDefense is offering $8,000 – $12,000 per remote code execution flaws within Windows Vista, and IE7.
“Challenge Focus: Remote Arbitrary Code Execution Vulnerabilities in Vista & IE 7.0
Time Period: Q1, 2007
Prize Amount: $8,000 – $12,000
Submission Deadline: Before Midnight EST on March 31, 2007
Vulnerability Challenge:
Both Microsoft Internet Explorer and Microsoft Windows dominate their respective markets, and it is not surprising that the decision to update to the current release of Internet Explorer 7.0 and/or Windows Vista is fraught with uncertainty. Primary in the minds of IT security professionals is the question of vulnerabilities that may be present in these two groundbreaking products.”
You can read this news on Idefense Labs
A Microsoft Windows Vista exploit has surfaced on a Russian website. From what it looks like, this is a privilege escalation vulnerability within csrss.exe which is the main executable for the Microsoft Client and Server runtime. This flaw is locally exploitable only, and affects all versions of Windows.
Source : Security-protocols.com
i decided that create a new Categories about security and hacking websites (or weblogs) .
write your favoirtes website in my “comment” .
As you may have noticed, Zone-H got defaced in the night between Dec 21st and Dec 22nd. This was an elaborated attack that was possible (as most of the past Zone-H incidents), starting with the exploitation of the human factor.
Zone-H has written up a full incident analysis report on this.
I hope everyone has a Happy Holidays!
CERT Secure Coding web site exists to support the development of secure coding standards for commonly used programming languages such as C and C++. These standards are being developed through a broad-based community effort including the CERT Secure Coding Initiative and members of the software development and software security communities.
(more…)
