|
News for
042199
|
contributed by kklinsky
Remote users can upload, download, delete, and potentially execute files
anywhere on a Cold
Fusion Application Server when the online documentation is installed,
which is done by default. A quick search on Alta Vista reveals over
5000 vulnerable sites!
L0pht Heavy Industries- Patch is
available
Allaire
|
|
contributed by Silicosis
Numerous commercial and freeware shopping carts when installed
incorrectly result in the possible exposure of customer information.
Information exposed may include Name, CC Numbers, home address, phone
number, what they ordered, how much they paid etc. The e-commerce
software creates world readable files in the web server's document tree
which then get indexed by numerous search engines.
BugTraq
Archive - Original Post with Broad Overview
BugTraq
Archive - Details of Vulnerability
|
|
contributed by Space Rogue
New rules from the US Department of Commerce and European Union may give
Europeans additional privacy while leaving Americans at the mercy of
marketers. The EU prohibits data sharing between companies without the
individuals permission, the US has no such restriction and allows
companies to sell and share information at will. This means that if
Europeans buy goods from US merchants who are not subject to the EU
privacy laws their privacy may be violated. The EU has said it may ban
Europeans from doing business with countries that do not have EU style
privacy laws. The US has said that it should retain its policy of
business self regulation.
Wired
|
|
contributed by Anonymous
Cracked
Yesterdays shootings at Littleton High School outside of Denver has
prompted a few website cracks.
http://mon.hiroins-net.ne.jp
http://sunrise.roma1.infn.it
http://icarus.umesci.maine.edu
http://orac.sunderland.ac.uk
We have also received reports that several other sites are being targeted
in the Denver area in relation to this event.
While not realted to the above this site was also reported as
cracked.
http://crevierbmw.com
|
|
|
