Editor's Picks

Login Form

A+ R A-

Multiple Vulnerabilities in Cisco TelePresence Products

E-mail Print PDF

Cisco Logo1] Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch

  • Unauthenticated Java Servlet Access
  • Unauthenticated Arbitrary File Upload
  • Cisco Discovery Protocol Remote Code Execution
  • Unauthorized Servlet Access
  • Java RMI Denial of Service
  • Real-Time Transport Control Protocol Denial of Service
  • XML-Remote Procedure Call (RPC) Denial of Service

Advisory : cisco-sa-20110223-telepresence-ctms

2] Multiple Vulnerabilities in Cisco TelePresence Manager

  • Simple Object Access Protocol (SOAP) Authentication Bypass
  • Java Remote Method Invocation (RMI) Command Injection
  • Cisco Discovery Protocol Remote Code Execution

Advisory : cisco-sa-20110223-telepresence-ctsman

3] Multiple Vulnerabilities in Cisco TelePresence Recording Server

  • Unauthenticated Java Servlet Access
  • Common Gateway Interface (CGI) Command Injection
  • Unauthenticated Arbitrary File Upload
  • XML-Remote Procedure Call (RPC) Arbitrary File Overwrite
  • Cisco Discovery Protocol Remote Code Execution
  • Ad Hoc Recording Denial of Service
  • Java Remote method Invocation (RMI) Denial of Service
  • Unauthenticated XML-RPC Interface

Advisory : cisco-sa-20110223-telepresence-ctrs

4] Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices

  • Unauthenticated Common Gateway Interface (CGI) Access
  • CGI Command Injection
  • TFTP Information Disclosure
  • Malicious IP Address Injection
  • XML-Remote Procedure Call (RPC) Command Injection
  • Cisco Discovery Protocol Remote Code Execution

Advisory : cisco-sa-20110223-telepresence-cts

Read more...

BlackHole RAT Beta – Mac OS X Trojan Horse

E-mail Print PDF

BlackHole is a variant of a well-known Remote Access Trojan (RAT) for Windows known as darkComet.
BlackHole RAT Client

“Hello, Im the BlackHole Remote Administration Tool.
I am a Trojan Horse, so i have infected your Mac Computer.
I know, most people think Macs can’t be infected, but look, you ARE Infected!
I have full controll over your Computer and i can do everything I want, and you can do nothing to prevent it.
So, Im a very new Virus, under Development, so there will be much more functions when im finished.
But for now, it’s okay what I can do?”

This message, displayed in the full screen window with the reboot button blocks user’s screen.

As even the malware itself admits, it is not yet finished, but it could be indicative of more underground programmers taking note of Apple’s increasing market share.

Functions :

  • Remote execution of shell commands.
  • Opens URL using victim’s default browser.
  • Sends a message which is displayed on the victims screen.
  • Creates a text file.
  • Perform shutdown, restart and sleep operation.
  • Popping up a fake “Administrator Password” window to phish the target.

Video Demonstration :

Read more...

How 1 can download any book from google

E-mail Print PDF

GOOGLE BOOK DOWNLOADER

Google Book Search, as you know, is a large online repository of books. You can enter a query and Google Book Search will search within the book and return you the results. You can then see a preview of the book and read it.

Some books are available in their entirety, some have limited previews and the others have no previews at all. It so happens that often one needs only a topic or two from a specific book. While the Internet is a good source and has plenty of free ebook sites, I have quite often seen people trying (unsuccessfully of course) to copy-paste, save images or take screen shots of Google Book search results. In this post I am going to show you how to download books from Google Books search.

So, if you have been in a similar situation where you badly wanted a page or two of the book, try the Google Books Downloader.

1) Just download, extract and run the application (make sure you have .NET 3.5 on your system).
2) Go to the Google Books page for the book you want to download.
3) Copy and paste the book code of the book you want to download.
4) Click the “check” button to check if GBD finds the required book and returns the available pages.
5) Click the “download entire book” button. GBD will now download the book. The number of pages 6downloaded will depend on the number of pages that are available. If the entire book is available like those in the public domain then GBD will download the entire book.

6) Once the download has completed, you can save the book as a PDF file by clicking on the “Save Book” button.
Now read the book! Of course you can use the application to download books that were not supposed to be downloaded. So you are advised to download the books with caution and at your own discretion. The download takes quite some time to complete

Download link

All iPhone Tips and Tricks

E-mail Print PDF

If you are looking for some cool iPhone 3G tips n tricks your search ends here. Smartphones have the distinct advantage of featuring many customisable options and the iPhone 3G is no different, rather only better. We provide you the best, coolest and hottest iPhone tips, tweaks, secrets that you couldn't imagine existed. The best part is that our iPhone tips and tweaks list is constantly updated so you discover new and fun stuff in your iPhone, always.

iPhone Keyboard Tips:

  1. Shift Key: Apple with its vast iMac experience has featured the shift key press option on the iPhone multi-touch screen. This is especially relevant if you want to capitalize few letters without pressing the CAPSLOCK option.
               
  2. Double Tap: In the iPhone the double tap primarily serves three functions. The double tap zooms in on anything you tap in Google Maps, Safari browser and in Photos. You can also zoom out by double tapping again. While watching videos just double tap to remove or restore the letterbox bars at the side. Quickly double tapping the space bar also adds a period and space.

Read more..
          

Software niche marketting

E-mail Print PDF

A NICHE MARKET is a subsidiary small group among the main mass market, which is usually ignored by large companies. It consists of specific products focusing on specific needs of potential customers. There is a fine line between focusing on customers of a NICHE market and unsustainable niches. Every products and services in any sectors invariably have niches in them. Difficulty is finding them, analyzing the feasibility and marketing. An example of NICHE market is business channel that offer news exclusively for investors. Mainstream news channels don’t provide information about shares and stocks. The potential customers are share traders, investors etc,
Here is a brief explanation on how to market software NICHES and get maximum profit from minimum resources.read more..

Microsoft to monitor Adobe’s Training

E-mail Print PDF

Methodology

Adobe’s edge over Microsoft to develop new software and technology especially in web application and development tools as well as mobile computing is quite prominent these days. This has led Microsoft to employ agencies to study their training methods.
Adobe has its training centers at Noida and Bangalore (India centers) which employ around 700 employees together, most of them working as product development analysts taking up various jobs related to this area.
This is being done to map the standards of training that Adobe offers to its employees to what Microsoft is giving its trainees. Their aim is to analyze and determine the organization’s product development team and the hierarchy maintained by the people at Adobe India at various levels. This would help Microsoft determine the loopholes in their training and placement methods.
As the cut throat competition related to development of Web development applications and software’s for handheld devices is on its all time rise, monitoring each others intellectual growth is phenomenal.
On this account Microsoft gave a prompt reply by stating that Microsoft India employs people at all levels including evolving fresh graduates, experienced people as well as employs of Microsoft from other parts of the world who are willing to migrate to this country. They offer excellent pay scales with respect to the set of skills and experience an individual possesses. There are various routes to get into their firm that includes on campus recruitment, through employment agencies, though the internet and also by recommendations from the current employees working there. Experienced individuals in the same industry and even from direct competitors are employed by them to gain an extra edge. On the other hand Adobe refused to comment on this issue.
This is truly a smart move on the part of Microsoft to help enhance the output of their employees and make a better position in the field of Web development and handheld software technology.


Adeona: The Open Source stolen/lost

E-mail Print PDF

Laptop tracker

A year long study and joint research at The University of Washington, The University of California, San Diego and University of California Davis, resulted in an Open Source Software to track down missing or stolen laptops. It is being seen as a boon for the government and business officials who have been facing loss of confidential data due to stolen laptops as well as for others who have converted their notebooks into photo and video storage areas.
Named after the Roman Goddess of safe returns, Adeona is the first Open Source system for tracking the location of your lost or stolen laptop that does not rely on a proprietary, central service. This means that you can install Adeona on your laptop and go — there’s no need to rely on a single third party.
What’s more, Adeona addresses a critical privacy goal different from existing commercial offerings. It is privacy-preserving. This means that no one besides the owner (or an agent of the owner’s choosing) can use Adeona to track a laptop. Unlike other systems, users of Adeona can rest assured that no one can abuse the system in order to track where they use their laptop.
Adeona is designed to use the Open Source OpenDHT distributed storage service to store location updates sent by a small software client installed on an owner’s laptop. The client continually monitors the current location of the laptop, gathering information (such as IP addresses and local network topology) that can be used to identify its current location. The client then uses strong cryptographic mechanisms to not only encrypt the location data, but also ensure that the ciphertexts stored within OpenDHT are anonymous and unlinkable. At the same time, it is easy for an owner to retrieve location information.
How it works?
Upon the installation of Adeona on your laptop, encrypted connections to OpenDHT storage server is established. If a laptop is stolen, one can log into OpenDHT and check the location of the laptop through the IP addresses and the Internet nodes, last known and used to connect the lost gadget. The best and the most distinguishing feature of this software highlights its privacy ideas which do not let the Law enforcement agencies or any external individuals to go through the data in one’s laptop.
USE IT
There are downloadable binaries/installers for Linux, Windows and Mac.

 

Page 12 of 12

templates joomla 1.5

Techno YouthYouth of Technology