This week I audited the new Mozilla PRISM what is usually called as a secure browser engine & used by a lot of software(Zimbra|Desktop). Prism is an application that lets users split web applications out of their browser and run them directly on their desktop in a secure mode. Mozilla Developers have produced 1 application (standalone)of Prism what is stable running & 1 addon for Mozilla Fireox browser.
Weiterlesen »
Von GE TEAM am 24.12.2009 um 11:19 Uhr
gespeichert unter All
• 1 Kommentar »
GESEC Team(~smash & ~rem0ve) discover a SQL Injection Vulnerability on Pandora FMS Monitoring. Attackers can manipulate the application DBMS over a remote sql-injection vulnerability.
weiterlesen »
Von GE TEAM
am 21.12.2009 um 11:07 Uhr
gespeichert unter All
• 1 Kommentar »
In this week we discovered multiple Input Validation Vulnerabilities on Barracuda IM Firewall Appliance. A remote attacker is able to get sensitive customer sessions or can implement evil script routines(JS;PHP) & malicious codes(server-side). A Input Validation Vulnerability is detected on server-side(persistent) of IMFW 620.
weiterlesen »
Von GE TEAM
am 08.12.2009 um 17:11 Uhr
gespeichert unter All
• 2 Kommentare »