Monthly Archives: September 2006

Exploits from Day Zero to Day 7

Websense Security Labs has released an alert on the recent VML vulnerability found in IE 5 and higher. The alert mentions that emails are already making their way to mailboxes, containing links to sites that host VML exploit code. ‘…appears … Continue reading

Leave a comment

Vuln. Web apps Top 3 CVEs

Jeremiah Grossman includes all the relevant literature in his blog entry –  http://jeremiahgrossman.blogspot.com/2006/09/web-app-vulnw-take-over-top-spots.html . The important facts from mitre mail:‘XSS has become the number 1 vulnerability of all time, at least in CVE.Buffer overflows were number 1 year after year, … Continue reading

Leave a comment

ALL YOUR PICTURES BELONGS TO US

Back in 2003, on a rainy night, an idea came to mind, ..all your base are belong to us. How does MS Windows® OS stores information about displaying thumbnails within the folders? That was easy to find. The "thumbs.db" file … Continue reading

3 Comments