Sikkim Manipal University portal can be hacked via SQL Injection
About the university: Sikkim Manipal is one of the largest private University in India. The Institute attracts students from all over the country, with over 1700 students enrolled in the various engineering disciplines. 102 full-time faculties are employed. Type of problem: SQL Injection Vulnerable Portal: http://portal.smude.edu.in/ User Name: sanjay [any name will work] Password: ‘ [...]
New Orkut – Upload Images/Songs/Videos in Profile
New Orkut! The latest Buzz in the E-World. But now almost all have it. And its still fresh. Owing to the fact that its like Windows Vista compared to XP. [A huge copy of something else, but who cares as long as it looks good on your screen]. Well I am not here to write [...]
Buffer Over Flow Attack
If you are reading this post then you definitely have some idea about computer programming and process, A computer program executes various processes and goes on balancing equations for which it has been created. In the new era of programming we generally see that companies recruit only those programmers which are efficient in programming. Now [...]
The New Era of Eavesdropping
You all must have heard about Keyloggers. You can log the keystrokes using keyloggers working as a hidden background service at victim’s computer. Just imagine a case, you think your system is secured as its not having any keylogger and you’ve thoroughly scanned the background service and there is no suspicious service running behind as [...]
Google Chrome – Vulnerable To Carpet-Bombing Attack
Google has announced the beta version of the web browser called Chrome. The new web browser is open source and it targets to change Internet browsing in the future. One of the feature of Chrome is that it wil have a user interface that is reduced to minimum and focus on an omnibar search auto [...]
iPhone Passcode Lock Rendered Useless (Vulnerability)
Do not trust that passcode lock on Apple’s iPhone. The feature, which lets users set a four-digit pincode to limit access to the device, can be easily bypassed with a few finger taps on the iPhone to give an intruder access to sensitive information. Here are a few steps to reproduce this vulnerability (requires physical [...]
Windows Genuine – Nagware Notification
Microsoft is stepping up its war on software pirates by rolling out new Windows Genuine notification software for what it is calling its most pirated version of Windows: Windows XP Professional. In an August 26 posting to the Windows Genuine Advantage blog, Director of Genuine Windows Alex Kochis said XP users should expect Microsoft to [...]
Evincing SEH I
Structured Exception Handler SEH alias Structured Exception Handler is a mechanism devised by Microsoft, to handle and slay events of exceptions that occur during the execution of a Windows application. SEH is a potent structure implemented to handle all the events that occur outside the program flow. That means SEH will manage all the functions [...]
Bypassing HTML Get and Put using .Net
This post is to see how, or if possible a client can get connected to server using solely .Net web application technology. The post and code below by Peter A. Bromberg, Which i came across shows how to connect client to server using TCP/IP. What will be interesting for me to know is, If the [...]
Loading ...