lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <478B9C7D.6040204@infiltrated.net>
Date: Mon, 14 Jan 2008 12:31:41 -0500
From: "J. Oquendo" <sil@...iltrated.net>
To: Tomaz <tomaz.bratusa@...mintell.com>
Cc: bugtraq@...urityfocus.com
Subject: Re: Linksys WRT54 GL - Session riding (CSRF)


> | Isn't your exploit somewhat complicated?  Just put
> | 
> | <img
> src="http://192.0.2.1/level/15/configure/-/enable/secret/mypassword"/>
> | 
> | on a web page, and trick the victim to visit it while he or she is
> | logged into the Cisco router at 192.0.2.1 over HTTP.  This has been
> | dubbed "Cross-Site Request Forgery" a couple of years ago, but the
> | authors of RFC 2109 were already aware of it in 1997.


With an swf file using php one wouldn't need to trick someone entirely, 
just hope they don't have a pop up blocker


http://www.infiltrated.net/nojava.pimp

-- 
====================================================
J. Oquendo

SGFA #579 (FW+VPN v4.1)
SGFE #574 (FW+VPN v4.1)

wget -qO - www.infiltrated.net/sig|perl

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xF684C42E


Download attachment "smime.p7s" of type "application/x-pkcs7-signature" (5533 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ