Events: Submitted by Wade on 19-Mar-07 at 10:16am
The new version of BeEF has been released. BeEF 0.3.1.6 has new modules employing cutting edge exploitation techiques. It is the first framework/tool that can perform Inter-Protocol Communication and Inter-Protocol Exploitation. It can reach behind hardened firewalls and IDSs to launch ported exploits at arbitrary servers.
Konqueror DoS Via JavaScript Read Of FTP Iframe
Security: Submitted by Mark on 04-Mar-07 at 07:48pm
This Konqueror crash is a spin-off finding from the FTP PASV paper.
Manipulating FTP Clients Using The PASV Command Paper
Security: Submitted by Mark on 04-Mar-07 at 07:46pm
A common implementation flaw in FTP clients allows FTP servers to cause clients to connect to other hosts. This seemly small vulnerability has some interesting consequences for web browser security.
This paper discusses how the flaw affects Firefox, Opera and Konqueror.