XSS: Gaining Access to HttpOnly Cookie
Using the method getHeaderField in the Java HTTP API, any applet can access cookies with the HttpOnly flag set. This proves that enabling the HttpOnly flag does not protect you from XSS. Test your application with NTOSpider to find all possible Cross-Site Scripting in your web application.
http://seckb.yehg.net/2012/06/xss-gaining-access-to-httponly-cookie.html
Attackers releases Zero-Day Java Exploit
A major zero day exploit in Java was released last week. Oracle recently moved Java to a quarterly patch cycle with its next update scheduled for October. Oracle released an out of band update which should be applied immediately across all operating system platforms. It is rumored that the exploit has found its way into the BlackHole exploit kit and it is available in Metasploit. You’ll want to ensure that you are running Java version 7 update 7 OR Java version 6 update 35. http://www.java.com/
If you’re thinking to unplug Java from your browser or uninstall it from your computer completely, then it is a bit harder than point and click.
http://krebsonsecurity.com/how-to-unplug-java-from-the-browser/
Number of vulnerabilities including .NET XSS
This week a number of vulnerabilities were posted and as critical as XSS, SQL Injection, Code execution, and authentication bypass. Following is a list of the top risk vulnerabilities discovered in some of the most commonly used web platforms i.e. .Net, Drupal, and WordPress… Test your application with NTOSpider to find security vulnerabilities in your application before production –
.NET Cross Site Scripting – http://packetstormsecurity.org/files/116054
AP NetWeaver HostControl Command Injection – http://packetstormsecurity.org/files/116059
Phorum 5.2.18 Cross Site Scripting – http://packetstormsecurity.org/files/116057
Drupal Apache Solr Autocomplete 6.x / 7.x XSS – http://packetstormsecurity.org/files/116056
Drupal CAPTCHA 6.x Access Bypass – http://packetstormsecurity.org/files/116055
Sistem Biwes SQL Injection / Path Disclosure – http://packetstormsecurity.org/files/11605
Drupal Views 6.x Privilege Escalation – http://packetstormsecurity.org/files/116052
Joomla Spider Calendar Lite SQL Injection – http://packetstormsecurity.org/files/116051
Drupal Taxonomy Image 6.x Cross Site Scripting / PHP Code Execution – http://packetstormsecurity.org/files/116050
Drupal Announcements 6.x Access Bypass – http://packetstormsecurity.org/files/116049
TomatoCart 1.1.7 Cross Site Scripting – http://packetstormsecurity.org/files/116029
Endonesia 8.5 CMS Publisher Module SQL Injection – http://packetstormsecurity.org/files/116032
Disqus Blog Comments SQL Injection – http://packetstormsecurity.org/files/116012
WordPress HD Webplayer 1.1 SQL Injection – http://packetstormsecurity.org/files/116011
EMC Cloud Tiering Appliance (CTA) Authentication Bypass – http://packetstormsecurity.org/files/115989
Plogger 1.0 RC1 Cross Site Scripting – http://packetstormsecurity.org/files/115985
Simple Web Server 2.2-rc2 Code Execution – http://packetstormsecurity.org/files/115981
Leave a Reply