02-17-2010 5:39
Telekom, Huawei, CSRF
Vecina Telekom ADSL modema je ranjiva na CSRF napade, ovim putem mozemo izmeniti vitalna podesavanja i ugroziti korisnike na vise nacina.
Linkovi:
- http://netsec.rs/18/huawei-hg510-multiple-vulnerabilities/493/
- http://www.securityfocus.com/bid/38261/info
- http://www.elitesecurity.org/t391845-Telekom-ADSL-amp-Huawei-CSRF-Auth-Bypass-DoS
- http://en.wikipedia.org/wiki/Cross-site_request_forgery
Blogovi ::
Ivan Markovic
Povezani zapisi:
09-02-2010 2:34
“Cross Site Request Forgery (CSRF) PoC Template (by Javascript)” project page has been updated.
Please visit the project section:
http://soroush.secproject.com/blog/projects/csrf_poc_template/
@ScriptName: Cross Site Request Forgery (CSRF) PoC Template
@Purposes: For any Legal/Ethical Educational Security Researches Only (without any WARRANTY). You can create your own CSRF PoCs by using this template. Author does not accept any responsibility or liability for the use or misuse of this code.
@Website: http://soroush.secproject.com/blog/projects/csrf_poc_template/
@Code: https://code.google.com/p/csrf-poc-template-by-js/
Feed!
09-02-2010 2:34
“Cross Site Request Forgery (CSRF) PoC Template (by Javascript)” project page has been updated.
Please visit the project section:
http://soroush.secproject.com/blog/projects/csrf_poc_template/
@ScriptName: Cross Site Request Forgery (CSRF) PoC Template
@Purposes: For any Legal/Ethical Educational Security Researches Only (without any WARRANTY). You can create your own CSRF PoCs by using this template. Author does not accept any responsibility or liability for the use or misuse of this code.
@Website: http://soroush.secproject.com/blog/projects/csrf_poc_template/
@Code: https://code.google.com/p/csrf-poc-template-by-js/
Feed!
| 
