Comments for www.notsosecure.com http://www.notsosecure.com/folder2 From Pentesters To Pentesters Wed, 17 Mar 2010 10:41:12 +0000 http://wordpress.org/?v=2.8.4 hourly 1 Comment on Metasploit Oracle Windows by sumit http://www.notsosecure.com/folder2/2010/03/15/metasploit-oracle-windows/comment-page-1/#comment-95158 sumit Wed, 17 Mar 2010 10:41:12 +0000 http://www.notsosecure.com/folder2/?p=366#comment-95158 its working i missed to install ruby-oci8-1.0.7-mswin32.rb thanks its working i missed to install ruby-oci8-1.0.7-mswin32.rb
thanks

]]> Comment on Metasploit Oracle Windows by sumit http://www.notsosecure.com/folder2/2010/03/15/metasploit-oracle-windows/comment-page-1/#comment-95157 sumit Wed, 17 Mar 2010 10:36:03 +0000 http://www.notsosecure.com/folder2/?p=366#comment-95157 Getting following error any idea what i could have missd msf auxiliary(jvm_os_code_10g) > run [*] Attempting to grant JAVA IO Privileges [*] Error: NameError uninitialized constant OCIError [*] Auxiliary module execution completed Getting following error any idea what i could have missd
msf auxiliary(jvm_os_code_10g) > run

[*] Attempting to grant JAVA IO Privileges
[*] Error: NameError uninitialized constant OCIError
[*] Auxiliary module execution completed

]]> Comment on Hacking Oracle 11g by Bug in Oracle 11g « Shimoon Security http://www.notsosecure.com/folder2/2010/02/04/hacking-oracle-11g/comment-page-1/#comment-94702 Bug in Oracle 11g « Shimoon Security Fri, 12 Feb 2010 18:42:49 +0000 http://www.notsosecure.com/folder2/?p=361#comment-94702 [...] Il codice fornito da Litchfield e presente sul sito notsosecure. [...] [...] Il codice fornito da Litchfield e presente sul sito notsosecure. [...]

]]> Comment on Hacking Oracle 11g by Gildus» Blog Archive » Las bases de datos de Oracle pueden hackearse remotamente http://www.notsosecure.com/folder2/2010/02/04/hacking-oracle-11g/comment-page-1/#comment-94668 Gildus» Blog Archive » Las bases de datos de Oracle pueden hackearse remotamente Wed, 10 Feb 2010 21:22:51 +0000 http://www.notsosecure.com/folder2/?p=361#comment-94668 [...] 10.2.0.4), pero no fue solucionado en los parches de seguridad de enero. Por lo que ha decidido hacerlo público (”11g 0day exploit”) durante la conferencia Black Hat en Washington el [...] [...] 10.2.0.4), pero no fue solucionado en los parches de seguridad de enero. Por lo que ha decidido hacerlo público (”11g 0day exploit”) durante la conferencia Black Hat en Washington el [...]

]]> Comment on Hacking Oracle 11g by admin http://www.notsosecure.com/folder2/2010/02/04/hacking-oracle-11g/comment-page-1/#comment-94634 admin Tue, 09 Feb 2010 19:29:40 +0000 http://www.notsosecure.com/folder2/?p=361#comment-94634 btw, the video is now online again: https://media.blackhat.com/bh-dc-10/video/Litchfield_David/BlackHat-DC-2010-Litchfield-Oracle11g-video.m4v btw, the video is now online again:

https://media.blackhat.com/bh-dc-10/video/Litchfield_David/BlackHat-DC-2010-Litchfield-Oracle11g-video.m4v

]]> Comment on Local File Inclusion with Magic_quotes_gpc enabled by Week 5 in Review | Infosec Events http://www.notsosecure.com/folder2/2010/02/02/local-file-inclusion-with-magic_quotes_gpc-enabled/comment-page-1/#comment-94604 Week 5 in Review | Infosec Events Mon, 08 Feb 2010 14:28:19 +0000 http://www.notsosecure.com/folder2/?p=347#comment-94604 [...] Local File Inclusion with Magic_quotes_gpc enabled – notsosecure.com Penetration using magic_quote_gpc and PHP [...] [...] Local File Inclusion with Magic_quotes_gpc enabled – notsosecure.com Penetration using magic_quote_gpc and PHP [...]

]]> Comment on Hacking Oracle 11g by Alexander Kornbrust Oracle Security Blog » Blog Archive » Oracle 11g 0day exploit published http://www.notsosecure.com/folder2/2010/02/04/hacking-oracle-11g/comment-page-1/#comment-94536 Alexander Kornbrust Oracle Security Blog » Blog Archive » Oracle 11g 0day exploit published Sat, 06 Feb 2010 07:42:39 +0000 http://www.notsosecure.com/folder2/?p=361#comment-94536 [...] just read on Sumit Siddarth’s (Sid) blog that the video recording from David Litchfield’s BH presentation is was [...] [...] just read on Sumit Siddarth’s (Sid) blog that the video recording from David Litchfield’s BH presentation is was [...]

]]> Comment on Open Redirection by sysmox.com http://www.notsosecure.com/folder2/2010/01/22/open-redirection/comment-page-1/#comment-94515 sysmox.com Sat, 06 Feb 2010 00:20:33 +0000 http://www.notsosecure.com/folder2/?p=329#comment-94515 good technice to avoid xss good technice to avoid xss

]]> Comment on Local File Inclusion with Magic_quotes_gpc enabled by kuza55 http://www.notsosecure.com/folder2/2010/02/02/local-file-inclusion-with-magic_quotes_gpc-enabled/comment-page-1/#comment-94376 kuza55 Wed, 03 Feb 2010 06:16:38 +0000 http://www.notsosecure.com/folder2/?p=347#comment-94376 Similar stuff is possible on linux: http://www.ush.it/2009/02/08/php-filesystem-attack-vectors/ Similar stuff is possible on linux: http://www.ush.it/2009/02/08/php-filesystem-attack-vectors/

]]> Comment on Local File Inclusion with Magic_quotes_gpc enabled by sid http://www.notsosecure.com/folder2/2010/02/02/local-file-inclusion-with-magic_quotes_gpc-enabled/comment-page-1/#comment-94331 sid Tue, 02 Feb 2010 16:16:13 +0000 http://www.notsosecure.com/folder2/?p=347#comment-94331 Hi skully, please see the update, you dont need magic quote at all. I managed to make so many mistakes in a small blog post :( Hi skully, please see the update, you dont need magic quote at all. I managed to make so many mistakes in a small blog post :(

]]>