Archivo de Agosto, 2009

NetCache URL DoS – Speedy Argentina – Advisory

Research by Hernan Pereira and associates. No response from Speedy in the past 15 days. Proceeding with disclosure. A DoS vulnerability exists in NetCache proxies of at least some areas of Speedy Argentina ISP (201.255.64/18), by which a URL could be rendered inaccessible by means of the prefetch cache control directive. The procedure is very […]

Speedy’s Netcache URL Denial of Service Vulnerability

Well, it seems it’s about time the two of us disclose the Speedy NetCache URL DoS vulnerability…. Stay tuned, people, this one rocks 🙂 PS: Yes, we tried to get in touch with Speedy. Many times. With different methods.

I’m now a fail2ban developer :D

Cyral Jaquier, fail2ban’s author, has given me write access to fail2ban’s subversion repository. 😀 I’m very happy!

Speedy: vamos, caguemonos en los standares!

“Asi que $peedy intercepta cualquier dominio que uno escriba y que no sea posible resolver y te brinda “ayuda” desde su propio buscador.” http://blog.salinas.com.ar/2009/07/16/me-cago-en-los-estandares/ Segun me cuentan, a veces no se puede navegar bien hasta que veas su publicidad web de Speedy SI ES 2.0…. lo gracioso es que yo tengo fiber, pero el test […]

URGENTE: Corrijan wp-login.php!

Si, es vulnerable. Solo cambien la linea 190 de wp-login.php para que tambien chequee si la variable es un array. Vean los detalles aca.