by Julien Ahrens | Sunday, September 30, 2012 | Advisory
Hamburg.de – The website of the most beautiful city in Germany which is famous for its big port and its amazing atmosphere. Some days ago I had found a Non-Persistent Cross-Site Scripting vulnerability on this website and informed the team of Hamburg.de about...
by Julien Ahrens | Sunday, September 23, 2012 | Exploit
First of all…thanks b33f from fuzzysecurity.com for your hint which helped a lot in solving the reliability issue of my last exploit 🙂 ! In my last article I wrote about a missing reliable way of executing shellcode. I received a mail from b33f about the...
by Julien Ahrens | Sunday, September 16, 2012 | Exploit
My latest finding: A classic buffer overflow. And this time I’ve used the great mona.py script created by the corelan team to exploit the vulnerability. It helps to find memory addresses for all of your stack adjustment needs (beside this, the script...
by Julien Ahrens | Friday, August 24, 2012 | Advisory
About a small, but nice CMS! Update immediately to v0.4 RC3 which fixes critical SQL-Injection vulnerabilities! References:http://security.inshell.net/advisory/23http://seclists.org/fulldisclosure/2012/Aug/304 1. ADVISORY INFORMATION...
by Julien Ahrens | Wednesday, August 15, 2012 | General, News
This is quite a sad story and also a perfect example of the ignorance or maybe arrogance of many software vendors. I’ve reported the Buffer Overflow vulnerability to the vendor named “Photodex” and also received an answer, which sounds like they...
by Julien Ahrens | Monday, July 2, 2012 | Exploit
My latest finding: Photodex ProShow Producer v5.0.3256 Local Buffer Overflow Vulnerability And…just a very, very, very quick and not reliable way of exploiting the vulnerability to execute some code. I’m working on a nicer(better) solution 🙂...
by Julien Ahrens | Wednesday, June 27, 2012 | Advisory
Have you read one of my last articles regarding webmasters ? The university of Salzburg didn’t or at least didn’t want to. In April I tried to contact the internal university IT staff about a possible Cross-Site Scripting security flaw on their main...
by Julien Ahrens | Monday, June 11, 2012 | General
A critical security advisory (CVE-2012-2122) has been published, which describes a quite easy way to bypass the authentication mechanisms used in MySQL and MariaDB. The short story: When you connect to your MySQL instance a token of the password is calculated and...
by Julien Ahrens | Sunday, June 10, 2012 | Advisory, CVE
Hello readers. This time I’ve found a quite interesting vulnerability in the widely spread firewall appliance “Astaro Security Gateway” (ASG) which is now maintained by Sophos. Although it only has got an assigned CVSSv2 Score of 3,5...
by Julien Ahrens | Friday, June 8, 2012 | Advisory
www.kiel.de – the website of the state capital of “Schleswig-Holstein” in northern Germany which is very famous for the “Kieler Woche”. Some weeks ago I stumbled over a critical SQL-Injection vulnerability on their website and...
