4li3n’s after midnight useless news and links – 2010.12.19 (Early Edition)

To compensate for last night’s lack of “after midnight useless news and links” I decided to go for an early edition today! Greets!

[EXPLOIT] Microsoft Windows ‘Win32k.sys’ Cursor Linking Local Privilege Escalation Vulnerability -> http://goo.gl/GvWiH
[TOOL] ioctlfuzzer v1.2: perform fuzz tests on Windows kernels -> http://goo.gl/bZlSx
[INFO] Rootkit for FreeBSD -> http://goo.gl/qe2sn
[INFO] SDRF Vulnerability in Web-Applications and Browsers (PDF & Video) -> http://goo.gl/0T5Wq
[INFO] Stored XSS Vulnerability @ Amazon -> http://goo.gl/WBqnz
[NEWS] Facebook to hold hacker cup -> http://goo.gl/oS8iB
[INFO] Top Five Vishing Techniques -> http://goo.gl/EDyaD
[INFO] Fyodor & David Fifield’s Defcon/Black Hat 2010 Presentation (Video & Slides) -> http://goo.gl/A2t6K
[NEWS] Proprietary Encryption in Car Immobilizers Cracked -> http://goo.gl/W9UBN
[POST] Cisco IOS Penetration Testing with Metasploit -> http://goo.gl/QgGgN
[PAPER] NIST Special Publication 800-132. Recommendation for Password-Based Key Derivation Part 1: Storage Applications (PDF) -> http://goo.gl/5DZPj
[NEWS] Microsoft releases Security Essentials 2 -> http://goo.gl/EbcMz
[NEWS] New hacked site notifications in Google’s search results -> http://goo.gl/F7vr8
[INFO] Metasploit and VNC Password Bruteforcing -> http://goo.gl/tWOsa
[UPDATE] JavaSnoop v1.0 Final available -> http://goo.gl/XSOBZ
[EXPLOIT] AhnLab V3 Internet Security 8.0 with AhnRec2k.sys Local Kernel Mode Privilege Escalation -> http://goo.gl/kTbM3
[EXPLOIT] NProtect Anti-Virus 2007 with TKRgAc2k.sys Local Kernel Mode Privilege Escalation -> http://goo.gl/gghEV
[EXPLOIT] Linux Kernel < 2.6.37-rc2 ACPI custom_method Privilege Escalation -> http://goo.gl/9l8hq
[PAPER] Heap Taichi Exploiting Memory Allocation Granularity in Heap-Spraying Attacks (PDF) -> http://goo.gl/kdTRE
[TOOL] Squid-Imposter: A Squid Based Sidejacking Proxy -> http://goo.gl/aKTqR
[POST] Raising a Botnet in Captivity -> http://goo.gl/QTLUE
[POST] WebKit CSS Type Confusion -> http://goo.gl/1f0fR
[TOOL] PyF is a python open source framework dedicated to large data processing -> http://goo.gl/Y2g81
[SCRIPT] Nessus plugin – detection of encrypted disk volumes via WMI -> http://goo.gl/53jV7
[SCRIPT] Nessus plugin – detecting SSL Certificates signed with unknown certificate authorities -> http://goo.gl/eAkz9
[UPDATE] Blade 1.8: forensic data recovery -> http://goo.gl/u8uSF
[NEWS] Hotmail Gets Interactive, Runs JavaScript Within E-mails -> http://goo.gl/2e9HU

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s