Safari browser
11 Aug 2009

Hijacking Safari 4 Top Sites with Phish Bombs

Once again, outdated browser versions have fallen to the trap of malicious software and users who are able to take control of a victim’s computer, manipulate his or her browser, and inject unwanted software into the computer through design flaws by many browsers. Within Safari browser exists the Top Sites

info@securethoughts.com' 0
Opera browser
11 Aug 2009

Pwning Opera Unite with Inferno’s Eleven

Despite the popularity of internet browsers such as Opera, it is inevitable that such widely available software comes at widely exploitable flaws. With the new Opera Unite!, new exploits also must be carefully examined and explored. Security, computer, and technology experts have come together to bring you the things you

info@securethoughts.com' 0
css style sheets
11 Jul 2009

Hacking CSRF Tokens using CSS History Hack

Against a Javascript and CSS CSRF Token Finder, a CSS approach is shown by an increasing amount of security and technology researchers to be able to hack CSRF Tokens without javascript injection or similar measures to prevent files of that method from being utilized. Exemplified that “brute force” attacks on

info@securethoughts.com' 0
Internet Explorer Browser
11 May 2009

Exploiting IE8 UTF-7 XSS Vulnerability using Local Redirection

Conventions: Attacker Domain – Securethoughts.com Target Domain – 50webs.com If you don’t remember, there was an important XSS vulnerability reported in all major browsers a while ago – IE7, Firefox and Opera. More Information is available in the Secunia advisories here. The vulnerability was that if you don’t specify a charset in your

info@securethoughts.com' 0
Tiny URL
11 Feb 2009

Unauthorized TinyURL URL Enumeration Vulnerability

Even some of the most readily used functionality options on social media and computers that users use have a potential for exploitation and manipulation. Timy URL is a well known feature that condenses actual long URLS into short and and easily communicable ones. This is particularly useful for websites such

info@securethoughts.com' 0
SHARE

Home