Campos

Today I received an email alert for a security flaw in Microsoft Outlook and Outlook Express, the actual update has the number KB910721, email is a very credible-looking including the text of the link seems to point to the Windows Update site. The only drawback is that after the link points to a site that is not related to Microsoft, although the structure of the URL is very similar to Microsoft. The fact that the email does not come addressed to me also made me suspect.

Although it is not my usual warning of this kind of things, Email this surprised me the similarities it has with the emails that you receive from Microsoft.

Microsoft never sends updates or links to that lead directly to files for download, we always have to go through those pages of boring site with description of the download, few exceptions in which the same is said when the user requests the download site.

Antonio Campos Useless, Microsoft, Vulnerabilities, Windows

Já conheço este site há algum tempo já usei inúmeras vezes os programas disponibilizados e todos cumprem os objectivos a que se propõe, tirando o facto do AVG numa das actualizações me ter apagado os executáveis dizendo que continham um vírus qualquer, nunca tive problemas.

Agora o AVG já não se queixa!!!

O site é NirtSoft.com…

Tem software gratuito para recuperar passwords armazenadas no PC em Windows dos seguintes programas:
-MSN
-Outlook Express, Microsoft Outlook 2000, Microsoft Outlook 2002/2003, IncrediMail, Eudora, Netscape Mail, Mozilla Thunderbird e Group Mail Free.
-Internet Explorer
-Passwords de ligações dial-up
-Microsoft Access
etc etc

e um sniffer para cheirar as passwords enviadas para servidores pop e smtp…

Vale a pena fazer download de todos e guardar num sitio acessível!!!!

Antonio Campos Free, Vulnerabilities, Windows

Ainda não tive oportunidade de testar este software, mas pelas reviews que tenho visto parece que funciona mesmo, mal acabe o download do ISO vou testar para ter a certeza que funciona…

Este programa corre em Windows, Linux e Mac OS X e serve para recuperar passwords esquecidas ou para descobrir passwords de utilizadores do Windows.

Existe também um ISO com uma distro de Linux (SLAX6) este ISO é um Live CD que recupera automaticamente as passwords dos utilizadores do Windows. Esta é a mais valia deste software de todos os programas que conhecia para o efeito era necessário ter acesso ao sistema para instalar um programa que depois crackava as passwords, com a hipotese do LiveCD isso deixou de ser necessario…

Também recupera passwords no Windows Vista!!!

Site do Ophcrack
Link para o ISO do LiveCD

Antonio Campos Cábulas, Vulnerabilities, Windows

The http://www.hi5.com/ allows its users to exchange messages with html code, and it is common practice in these messages contain images (”i mg src=”http://antoniocampos.no-ip.com/xpto.jpg” />;”), there are sites around the Internet that host images for free and even provide the html code for this image can be included on any page. So far nothing new…!!!
When someone receives a message sent through the site is sent an email to notify the recipient that received the message, this message is a direct link to the message without the user having to enter password or username. So far nothing new…!!!
While giving a look in the logs of Web servers that administer, and has hosted images that are used for some of the messages that they send some of my friends through the hi5 I noticed that the logs (Apache), when someone makes GET the picture is that the link (accompanying the new message notification) is recorded in the referer and with a simple copy paste in the browser have unlimited access not only the message in question but the entire account… So dear friends be careful with the messages they send that site because they may have less pleasant surprises because someone can walk cuscar your account without realizing…

—————————–EDIT 17-10-2007————————————–

The way to solve or try to solve the problems that affect your accounts is to contact directly the hi5 through this www.hi5networks.com/contact.html and expose your problem, perhaps resolve.

In the case of using the hotmail and are trying to recover the password of hi5 see the junk mail folder sometimes the messages hi5 go beyond direct!

In principle and as there is lots of people having problems with hi5 I present here a new way to try to solve your problems… metam favorites in this post and go visiting to see if already got news!

—————————–EDIT 16-07-2007—————————————-
Many of you wonder why they do not have access to HI5.com, The most likely reason and if they are to have access to hi5 from school or work is that the adinistrador the computerized system has blocked access to the site! The reasons may be many more common is the loss of productivity!!! To “furarem” these limitations have to use Web Proxies (operation depends on network to network) as described us feedback. Or they try an alternative in Portuguese which is the Kroow... that is in my opinion is more complete than the Hi5

————————————————-
And at the request of several families a poor translation to English:

hi5.security hole:

www.hi5.com allows users to send messages to others users, and users can include on that messages html code including remote inclusion off images (”")… when a user receives a message he receives too a mail message with the new message notification and a direct link to the message without have to do login…

the problem: the server log keeps the GET and the REFERER for each request, and when the user click the mail link to the message he do the GET of the image on remote server, and the direct link to the message is keeped on the REFERER log, if you copy the link(on the REFERER) to the browser you have full control of the sender account..

—–

OPEN THE FORUM HI5-PORTUGAL.COM A COMMUNITY OF PORTUGUESE HI5, STILL NO SIGN UP HOME AND CONTRIBUTE, I'M ALREADY THERE TO TRY TO HELP AND BE HELPED. The HI5-PORTUGAL IS FOR THE MUTUAL-MOS-MOS AND SHARE WHAT YOU KNOW ABOUT HI5.

Antonio Campos News, Vulnerabilities