User Account Control: insecure by design? Security researchers have taken issue with Microsoft’s implementation of a security feature in Vista that is designed to stop users from routinely running systems in admin mode. More…
Posted in Security | No Comments »
Overview
There have some vulnerability in latest version of Mozilla Firefox both 1.5.0.9 and 2.0.0.1 this vulnerability allows the attacker to read arbitrary user-accessible files on the system and Phishing protection allows people that conduct phishing to fool Firefox into thinking that the site is secure where in fact it should have been marked a phishing site
Description
5 February 2007: Popup Blocker Vulnerability Allows Reading Local Files : For security reasons, Firefox does not allow Internet-originating websites to access the file:// namespace. When the user chooses to manually allow a blocked popup however, normal URL permission checks are bypassed. The attacker may fool the browser to parse a chosen HTML document stored on the local file system, and because Firefox security manager treats all / URLs as having “same origin”, such a document could read other local files at its discretion with the use of XMLHttpRequest, and relay that information to a remote server. This vulnerability effect with Firefox version 1.5.0.9
7 February 2007 : Phishing Protection Bypass Vulnerability : Phishing Protection takes Firefoxs security to a new level, helping to safeguard your financial information and protect you from identity theft. When you encounter a Web site that is a suspected forgery (known as a phishing site) Firefox will warn you and offer to take you to a search page so you can find the real Web site you were looking for. Please see more at Bugzilla #367538
11 February 2007 : Focus Bug Stealing Vulnerability : The vulnerability allows the attacker to silently redirect focus of selected key press events to an otherwise protected file upload form field. This is possible because of how onKeyDown / onKeyPress events are handled, allowing the focus to be moved between the two. If exploited, this enables the attacker to read arbitrary files on victim’s system. This vulnerability found in both Firefox version 1.5.0.9 and version 2.0.0.1 and Opera is most likely not vulnerable; Microsoft Internet Explorer is not vulnerable as-is, but might be vulnerable to a variant of the attack.
14 February 2007 : “location.hostname” Cross-Domain Vulnerability : A vulnerability has been identified in Mozilla Firefox, which could be exploited by remote attackers to bypass security restrictions and gain knowledge of sensitive information. This issue is due to an origin validation error when handling the “location.hostname” property, which could be exploited by remote attackers to steal authentication cookies from arbitrary sites by tricking a user into visiting a specially crafted web page. This vulnerability effected with Mozilla Firefox version 2.0.0.1. Please see Bugzilla #370445
Solution
There still no any official supplied patch from Mozilla Firefox for this issue.
References
Posted in Internet, Security | No Comments »
iskorpitx brings down 600 NZ sites Legendary Turkish hacker iskorpitx has turned his attention Down Under with an attack that grounded the websites of nearly 600 Kiwi businesses and about 300 international sites hosted by the same US-based web server. More…
Posted in Internet, Security | No Comments »
Microsoft has 6 Critical and 6 Important vulnerabilities to patch!
To view a summary of the February bulletins, visit Microsoft Security Bulletin Summary for February, 2007. Click the links below to view the individual Microsoft Security Bulletins and to download any patches that might be required for your system. You can also visit Windows Update to automatically determine what patches or updates your system needs.
Posted in Internet, Security | No Comments »
I found it on spamassassin svn trunk and you may got some ideas from this rules
(more…)
Posted in Internet, Security, Spam | No Comments »