Phrack 67 !!

Phrack is one of  THE best hacking E-zines in the world !! Phrack’s 67th issue just released ! The most awaited release was a very big disappointment ! Phrack was and is known for its new technically super rich content about the Hidden networks, Compromising new technologies etc but this release was , except a …

Phrack 67 !! Read More »

Facebook Attack

Hey all , I was browsing through the net when I came across a Blog , which stated “Return of the Facebook Snatchers” . So naturally I opened the page and found , the ultimate breach of privacy for the Facebook Users ! Any one , even the users not registered at facebook can see the …

Facebook Attack Read More »

Xitami/5.0a0 Webserver Denial Of Service Vulnerability

################################################ # Name : Xitami/5.0a0 Denial Of Service # Author: Usman Saeed # Company: Xc0re Security Research Group # Website: http://www.xc0re.net # DATE: 10/05/10 # Tested on Windows 7 ! ################################################ Disclaimer: [This code is for Educational Purposes , I would Not be responsible for any misuse of this code] [*] Download Page : http://www.xitami.com …

Xitami/5.0a0 Webserver Denial Of Service┬áVulnerability Read More »

Cherokee Web Server 0.5.4 Denial Of Service

####################################################### # # Name : Cherokee Web Server 0.5.4 Denial Of Service # Author: Usman Saeed # Company: Xc0re Security Research Group # Website:  Xc0re.net # DATE: 25/10/09 # Tested on Windows ! ####################################################### Disclaimer: [This code is for Educational Purposes , I would Not be responsible for any misuse of this code] [*] Download …

Cherokee Web Server 0.5.4 Denial Of Service Read More »

BSR Webweaver 1.33 /script security Bypass vulnerability

BSR Webweaver 1.33 Author : Usman Saeed , Exploit @ Xc0re Security Research Group. [*] Date: 15/09/09 [*] http://www.brswebweaver.com/downloads.html [*] Attack type : Remote [*] Patch Status : Unpatched [*] Description : In ISAPI/CGI path is [%installdirectory%/scripts] and through HTTP the alias is [http://[host]/scripts] ,The access security check is that if the attacker tries to …

BSR Webweaver 1.33 /script security Bypass vulnerability Read More »

Kolibri+ Webserver 2 Multiple Vulnerabilities

Kolibri+ Webserver 2 suffers from multiple vulnerabilities namely Directory Traversal &  Denial OF Service. Vulnerability was reported on 6th of September 2009 by Xc0re Security Research Group. http://xc0re.net/index.php?p=1_19_Kolibri+-Webserver-2-multiple-vulnerabilities An attacker can easily crash the server , or send a crafted http request to escape the root directory and view any file , even outside the …

Kolibri+ Webserver 2 Multiple Vulnerabilities Read More »