Ok, I was doing some research on the net on various flaws and vulnerabilities that hackers use to warm our computers, and i've made a list of some interesting points (some of them i've never heard) and decided to post here:
As i said, i've made a big research and to each vulnerabilitie i´ve included links to additional information useful for correcting or preventing the security flaws.
And for now is all, hope this become useful to anyone! There are so many vulnerabilities that is impossible to name them all, when i was doing my research at a point i just had to stop because there are so many that i almost got crazy!!!
I think that it would be interesting to place posts here of "things" that already have happened you or of the possible flaws that you guys have knowledge of some programs that all we use daily, so that us can prevent future attacks.
Stay well.
Notice from jlhaslip:
List such as these should be contained inside some bbcode tags. Preferably the [ list ] tags, but it was too much work for a list this size, so next time, please research the use of bbcode lists. Thanks.
jlhaslip, i've changed the post to the [list] tag form, please confirm it´s ok now, if don't i'll post it the way you left it!
List such as these should be contained inside some bbcode tags. Preferably the [ list ] tags, but it was too much work for a list this size, so next time, please research the use of bbcode lists. Thanks.
Sorry for my ignorance, but what are "bbcode lists"?
You may have included it already, but have you got the one in which hackers could hack a computer through Images?
Macs are a way better operating system. I don't want to start a whole debate, but thats how it is. There is almost no vulnerabilities that I can think of off of the top of my head.
Anyway, great list, thanks for it Canada Eh895
Notice from jlhaslip:
Signing off your posts with a name or other salutation is frowned upon and may have you receiving a warning (or a ban if you continue to use them once warned verbally) and this is your verbal warning. Signatures are to be placed in your Signature Block through the modifying the Profile for each user. Please look in the Tutorial section if you are not certain how to modify the Signature Block of your Profile. Thanks.
Of course, these only affect people who use Windows (which I do), and base their browsing on Internet Explorer and NetScape browsers (which I don't).
Luckily (with exception of Media Players), all of the things from list 4 to list 7 are optional for your computer. So you only need to worry about these if you actually have them - and I for one do not have any of them.
That is not to say that not having AntiVirus is reccomended however - in fact, you should get a Virus scanner as soon as you can! I refer to virus scanners being "optional" in the way that you have free will choosing which one to use.
For lists 1 - 3, patches and fixes are available. However older versions of windows may not have these because they are no longer updated. My advice is: be careful when on the net, and don't do anything stupid.
Ok there is a big topic going around about web browsers. The facts are web browsers are made to
browse the web and bring back anything you tell it to no matter whats inside. This is why so many
people get viruses. The important thing to do is learn how to use your browsers internet settings.
If you learn the settings for your browser they apply to all. However there are safer web browsers
the best are (Firefox) which is also faster than Internet Explorer. Then there is (Opera), this is
the fastest and safest browser on the web. However some sites and things you do on ...
Hi Guys, I've had a problem with my computer. I thought it restarted only when using the
internet but I was wrong. I found out that isn't the denominator. I tried disabling the internet
to run a virus scan and the scan can't complete as the computer restarts too often. I followed
the following instructions to read the dmp file the restart error generates. 1) Download and
install the http://www.microsoft.com/whdc/devtools/deb...installx86.mspx Debugging Tools from
Microsoft 2) Locate your latest memory.dmp file- C:\WINDOWS\ Minidump\Mini0...
I have broadband internet connection and DI-704P router, Right now all users can connect to the
internet. Is there any possible ways to make the internet connection be password protected? user
must supply their username and password first to connect to internet. Is this possible? Tnx for
any suggestion and tips /smile.gif' border='0' style='vertical-align:middle' alt='smile.gif' /> ...
Well I saw this article and after reading it all just to find the top 10 security problems I thought
I share them and give my thoughts about them. I know I know its horrible but what can I say, its me
/laugh.gif" style="vertical-align:middle" emoid=":lol:" border="0" alt="laugh.gif" />. 1.) Data
Breaches For the most part I am not surprise especially the big stories of 2007 which include the
TJ Max breach of 45 million credit/debit cards; I believe that has been the biggest hack job ever in
terms of stolen cards and id theft (somewhat). Oh lets not forget the al...
Security Guidelines for Internet Users 1. Install an anti-virus software, you can free ones like
AVG Free . Ensure that it's regularly updated - this is of the utmost importance. 2.
Anti-virus software is not enough, the security can be tightened using a firewall software which
will help you prevent unauthorized incoming and outgoing communications from your computer while
connected to the Internet. 3. Disconnect your computer from the Internet when not in use. The
longer you are connected to the Internet, the more opportunity you give for persons to gain un...
Well lets start off by saying these 2 people are complete morons. The first guy who had this thing
loaded up on the internet so it could be shown on how it works and not securing it so it
couldn't be downloaded. Does a home server ring a bell? guess not. second guy for downloading
it and then uploading it to his site with the excuse that "he thought it would be useful to other
security professionals looking for ways to illustrate just how dangerous a scripting attack can be."
Now this code has been found on several websites and now could be use to hijack web brow...
A very serious problem is found in the new version of Winzip 10. This is due to the FileView
ActiveX Control used by WinZip 10. Users of WinZip 10 who accedientially venture into malicious
websites could suffer due to this. This is rated highly critical by the security firm Secunia. Only
those who are using WinZip 10.0 with a build lower than 7245 are exposed to this critical bug.
Those who are using WinZip 9 and older versions do not have this problem. The Patch WinZip 10.0
build 7245 is available free of charge to all registered users of both Standard and Profess...
Gibson Research Company (GRC) has a number of free tests available and their ShieldsUp! is one
of the best I've seen around. QUOTE Without your knowledge or explicit permission, the
Windows networking technology which connects your computer to the Internet may be offering some or
all of your computer's data to the entire world at this very moment! Using this online
utility, you can check on your Windows file sharing, probe common ports and service ports, see what
Windows Messenger is doing in the background, check up on Internet Explorer and muc...
Its time for UNO to come forward to make a universally accepted Internet Laws. As sites can be
accessed from anywhere in the world, so there should be a single governing body, which will make
laws and these laws should be followed in every country, which are part of United Nations. I know
few years back it was impossible for a 10 year child in a well educated family of India to know the
meaning of porn, but now, with the rising of internet, all these things have came to his desktop. If
a child is served with these type of things, then 7 out of 10 child will be indulge i...
I was on MSNBC.com and read this article QUOTE YONKERS, N.Y. - The State of the Net survey by
Consumer Reports projects that American consumers lost more than $8 billion over the last two
years to viruses, spyware and various schemes. Additionally, it shows consumers face a 1-in-3
chance of becoming a cybervictim -- about the same as last year. According to the survey, consumers
lost $630 million over the past two years to e-mail scams. They also spent at least $7.8
billion for computer repairs, parts, and replacement over the past two years to co...
Buddies please suggest me how to Boost my Internet connection. Me having a problem that my internet
connection Dissconnect frequetly /sad.gif" style="vertical-align:middle" emoid=":(" border="0"
alt="sad.gif" /> while the internet connection is established. It is very awfull for me to write
that almost my modem disconnected 3 to 5 times in just interval of 15 minutes . And if this not
occur then I can’t browse more than 2 sites a time . me having 56k modem and using Windows Xp. Few
days back I downlaoded a software “Virtual Modem” , but the worse is that it has an EXTE...
Microsoft Internet Explorer COM Objects File Download Exploit (MS05-038)
/*+++++++++++++++++++++++++++++++++++++++++++++++ Ms05 038 exploit POC Write By ZwelL 2005 8 11
http://www.donews.net/zwell zwell@sohu.com Some code belongs to Lion(cnhonker), regards to him.
This code tested on Windows 2003 -----------------------------------------------*/ #include
#include #pragma comment(lib, "ws2_32") // Use for find the ASM code #define PROC_BEGIN __asm
_emit 0x90 __asm _emit 0x90\ __asm _emit 0x90 __asm _emit 0x90\ __asm _emit 0x90 __asm
_emit 0x90\...
another internet explorer aecurity hole! /blink.gif' border='0' style='vertical-align:middle'
alt='blink.gif' /> here 's the exploit : http://www.milw0rm.com/id.php?id=1148 ...
Take a look at this exploit! It's 0-day /tongue.gif' border='0'
style='vertical-align:middle' alt='tongue.gif' /> Advisory : FrSIRT/ADV-2005-1450 Rated as :
Critical Note : It is currently unclear whether the "Msdds.dll" library is installed with
Microsoft Office, Microsoft Visual Studio, or with other applications. More information will be
provided when further details are available. #!/usr/bin/perl
####################################################### # # Microsoft Internet Explorer "Msdds.dll"
Remote Code Execution Exploit (0day) # # Bindshell on...
You can compile this code and enjoy it!! CODE
/*+++++++++++++++++++++++++++++++++++++++++++++++ Ms05 038 exploit POC Write By ZwelL
2005 8 11 http://www.donews.net/zwell zwell@sohu.com Some code belongs to
Lion(cnhonker), regards to him. This code tested on Windows 2003
-----------------------------------------------*/ #include <stdio.h> #include
<winsock2.h> #pragma comment(lib, "ws2_32") // Use for find the ASM code
#define PROC_BEGIN __asm _emit 0x90 __as...
Internet Explorer allows users to utilize Windows's COM Objects. A vulnerability with
javaprxy.dll allows attackers to craft a special HTML code that will cause Internet Explorer to
execute a remote command by using one of Windows's COM Objects. u can find the patches here :
http://www.microsoft.com/technet/security/...n/MS05-037.mspx also i just posted the exploit link
here for educational perposes : http://www.frsirt.com/exploits/20050702.ie...yexploit.pl.php ...
hey guys my first post here! i wanted to know which software is the best antivirus and anti
spyware software there is in the market. i use AVG but it sucks. couldnt detect anything and my
comps still behaving like sh*t. /sad.gif' border='0' style='vertical-align:middle' alt='sad.gif'
/> it is infested with trojan and it hogs my resources like hell. my broadband is choked!!
can somebody HELP??!!!??...
Ok my internet exlore which i no longer use has become infested with some bug. It loads a pop up
even when it's not on and will open when I open Fire fox. On the other hand my IE has been used
to send a virus to my comp. So if you have IE you may be indanger of those pop ups. Unless I'm a
fool and there is a way to fix that....
Express your Opinions, Thoughts or Contribute more info. to help others.
Ask your Doubts & Queries to get answers, So that "Together We can help others!"
Register FREE for AD-FREE
forum, Create your own topics, Ask Questions, track topics, setup
subscriptions & notifications and Get a Free Website w/ Email and FTP.
