Great Reviews!Need help setting up your website, installing Apache, PHP, MySQL, or PhpNuke?Need help customizing or designing scripts?Please contact me via the Contact Us option for further details and pricing.
"Could a simple flash file redirector pushing fake security software actually trick a large number of users? Of course, especially when the files are hosted at legitimate services, the message localized to a native language, and the links spammed to millions of users."
Posted by Raven on Friday, September 05, 2008 @ 20:40:43 EDT (5 reads) ( | Score: 0)
DoS vulnerability hits Googles Chrome, crashes with all tabs
Whoa! Google Chrome has crashed. Restart now? While Google’s Chrome team is cheering, Rishi Narang from Evil Fingers is typing and releasing a proof of concept for a denial of service vulnerability that is successfully crashing the Chrome browser with all tabs.
IMPACT: Hijacking, Manipulation of data, Exposure of sensitive information, System access.
SOFTWARE: Invision Power Board 2.x - http://secunia.com/product/3705/
DESCRIPTION: DarkFig has reported some vulnerabilities in Invision Power Board (IP.Board), which can be exploited by malicious users to disclose sensitive information and compromise a vulnerable system, and by malicious people to conduct SQL injection attacks.
Posted by Raven on Wednesday, September 03, 2008 @ 16:42:19 EDT (40 reads) (Read More... | 2214 bytes more | Score: 0)
Joomla hit by critical password-reset forgery flaw
kguske writes "From Joomla: A flaw in the reset token validation mechanism allows for non-validating tokens to be forged. This will allow an unauthenticated, unauthorized user to reset the password of the first enabled user (lowest id). Typically, this is an administrator user. Note, that changing the first users username may lessen the impact of this exploit (since the person who changed the password does not know the login associated with the new password). However, the only way to completely rectify the issue is to upgrade to 1.5.6 (or patch the /components/com_user/models/reset.php file)."
Posted by Raven on Saturday, August 30, 2008 @ 13:11:56 EDT (60 reads) ( | Score: 0)
IMPACT: Security Bypass, Spoofing, Exposure of sensitive information, DoS, System
SOFTWARE:
Opera 5.x - http://secunia.com/product/82/
Opera 6.x - http://secunia.com/product/81/
Opera 7.x - http://secunia.com/product/761/
Opera 8.x - http://secunia.com/product/4932/
Opera 9.x - http://secunia.com/product/10615/
DESCRIPTION: Some vulnerabilities have been reported in Opera, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks, bypass certain security restrictions, disclose potentially sensitive information, or potentially compromise a user's system.
Posted by Raven on Wednesday, August 20, 2008 @ 20:48:16 EDT (145 reads) (Read More... | 3300 bytes more | Score: 0)
WS_FTP Home / Professional Format String Vulnerability
SOFTWARE:
Ipswitch WS_FTP Professional 2007 - http://secunia.com/product/13838/
Ipswitch WS_FTP Home 2007 - http://secunia.com/product/19609/
DESCRIPTION: securfrog has discovered a vulnerability in WS_FTP Home and Professional, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to a format string error when processing responses of the FTP server. This can be exploited by e.g. tricking a user into connecting to a malicious FTP server. Successful exploitation may allow the execution of arbitrary code. The vulnerability is confirmed in WS_FTP Home version 2007.0.0.2 and WS_FTP Professional version 2007.1.0.0. Other versions may also be affected.
SOLUTION: Connect to trusted servers only.
PROVIDED AND/OR DISCOVERED BY: securfrog
ORIGINAL ADVISORY: http://milw0rm.com/exploits/6257
Posted by Raven on Tuesday, August 19, 2008 @ 15:00:03 EDT (116 reads) ( | Score: 0)
DESCRIPTION: Some vulnerabilities have been reported in PHP, where some have an unknown impact and others can potentially be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Posted by Raven on Tuesday, August 12, 2008 @ 19:55:28 EDT (227 reads) (Read More... | 1525 bytes more | Score: 0)
SOFTWARE:
Microsoft Internet Explorer 5.01 - http://secunia.com/product/9/
Microsoft Internet Explorer 6.x - http://secunia.com/product/11/
Microsoft Internet Explorer 7.x - http://secunia.com/product/12366/
DESCRIPTION: Multiple vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
Posted by Raven on Tuesday, August 12, 2008 @ 17:47:23 EDT (221 reads) (Read More... | 4708 bytes more | Score: 0)
Coppermine Photo Gallery *lang* Local File Inclusion
DESCRIPTION: EgiX has discovered a vulnerability in Coppermine Photo Gallery, which can be exploited by malicious people to disclose sensitive information.
Posted by Raven on Saturday, August 02, 2008 @ 00:56:38 EDT (321 reads) (Read More... | 1426 bytes more | Score: 0)
Mozilla Firefox 3 URI Launching and XUL Error Page Vulnerabilities
SOFTWARE: Mozilla Firefox 3.x - http://secunia.com/product/19089/
DESCRIPTION: Some vulnerabilities have been reported in Firefox 3, which can be exploited by malicious people to bypass certain security restrictions, potentially conduct spoofing attacks, or compromise a user's system. The vulnerabilities are reported in versions prior to 3.0.1.
Posted by Raven on Wednesday, July 16, 2008 @ 18:19:25 EDT (321 reads) (Read More... | 1717 bytes more | Score: 0)
![[Valid RSS]](http://ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::
