Showing 1 - 6 of 6

Files Date: 2002-02-02

SQLInjectionWhitePaper.pdf: Posted Feb 2, 2002; Authored by SPI Labs | Site spidynamics.com; SQL injection is a technique for exploiting web applications that use client-supplied data in SQL queries without stripping illegal characters first. Despite being remarkably simple to protect against, there is an astonishing number of production systems connected to the Internet that are vulnerable to this type of attack. The objective of this paper is to educate the professional security community on the techniques that can be used to take advantage of a web application that is vulnerable to SQL injection as well as make clear the correct mechanisms that should be put in place to protect against SQL injection, as well as input validations problems in general.; tags | paper, web, sql injection; SHA-256 | 4fadfe48fd899c3d72fade7da539f8b403dad3e2b794ac2b7646dc57fb549517; Download | Favorite | View

ish_detect.tgz: Posted Feb 2, 2002; Authored by Arnaud Jacques | Site securiteinfo.com; Ish_detect is a small utility which detects the use of the remote ICMP shell daemon.; tags | tool, remote, shell, intrusion detection; systems | unix; SHA-256 | ee6a607ba18f2c24c981ddcc0bd045ef01ed9c7fea812f8621771878d4bba839; Download | Favorite | View

RHSA-2002-018.rsync: Posted Feb 2, 2002; Site redhat.com; Red Hat Security Advisory RHSA-2002:018-1 - New rsync packages are available; these fix a remotely exploitable problem in the I/O functions. These include the security patch from the recently released rsync-2.5.2. It is strongly recommended that all users of rsync upgrade to the fixed packages. More info on this bug available here.; systems | linux, redhat; SHA-256 | faf91340a392a224daa749860c05ada58e071ff7b0a24f13f52efa322669fb87; Download | Favorite | View

2600-lessons.htm: Posted Feb 2, 2002; Authored by Bill Reilly | Site denmarket.dk; Lessons Learned from the 2600 DeCSS Case - Linking Rules for "Hacking" and Other Alternative Websites. This article will look at the courts linking arguments and suggest ways that web sites can avoid legal problems.; tags | paper, web; SHA-256 | f2fb33c81e15f0c1db494db8d72bd7cd57b1e9c19ef8269af04bccfebd496d25; Download | Favorite | View

wwwthreads-5.5.txt: Posted Feb 2, 2002; Site hop.to; WWWThreads aka UBBThreads v5.5dev11 and below has a security hole in the upload system which allows remote users to upload php code which runs on the server. Fix available here.; tags | exploit, remote, php; SHA-256 | ca0b26ee8d002760055da92025a6c593fa195e329b83bc4b2741a4ec67e26d63; Download | Favorite | View

jvmcrash.txt: Posted Feb 2, 2002; Authored by Taeho Oh; java.security.AccessController can cause Sun derived JVM to crash. Tested on v1.3.1. Article available here.; tags | java; SHA-256 | d54b65e6f002a4b975ed045bad4a8fcda3b0d5fb0f199835727b51f75d88aaa0; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days