Site Archives XSS

MDaemon WorldClient Vulnerability

Posted on November 19th, 2008

GSA Reference Number: AD081119-01
Updated: 11-19-2008

Simply Put: Secunia is reporting a vulnerability in MDaemon’s WorldClient webmail frontend.  Attackers could send a specially-crafted email that, if viewed in the WorldClient webmail interface, could run malicious scripts or HTML code on the user’s machine without their interaction.  All the user would have to do is read the email.  The vendor has a patch available.

SonicWALL Content Filter Security Vulnerability

Posted on October 31st, 2008

GSA Reference Number: AD081031-01
Updated: 11-3-2008

Simply Put: SonicWALL has released an advisory regarding a new vulnerability found in its content filter.  If a user behind a SonicWALL with content filtering enabled clicks on a malicious link, an attacker can cause malicious javascript to be executed through the content filter’s “Blocked Traffic” screen.  This vulnerability only affects SonicWALLs running the Enhanced OS using the content filter with the CFS Block Page.  See below for vulnerable versions.

Advanced Phishing Advisory

Posted on January 16th, 2008

GSA Reference Number: AD080116-01

Simply Put: A new phishing attack has been targeted to customers of a financial institution in Italy. This attack is unique because it links to the institution’s actual website instead of using a fake website like most phishing attacks. Once the customer clicks on the link in the email, they are directed to the institution’s website to log on. However, an attack embedded within the link allows the attacker to capture the username and password as the user logs in. The username and password are recorded by the attacker for future use.