From Security Weekly WikiJump to navigationJump to search
[http://news.zdnet.com/2100-1009_22-6163822.html Month of PHP Bugs] - [Larry] - Psssst! PHP is insecure...so much so there are more bonus bugs than real bugs!
[http://www.securityfocus.com/bid/19399/discuss CA Virus Downgrade Vulnerability] - [PaulDotCom] - Malware will typically try to kill anit-virus programs running on the infected system as its first step. This may not always go unnoticed. However, if you are able to downgrade the virus defs to install some more juicy malware, that may very well go unnoticed.
[http://bindshell.net/papers/ftppasv Manipulating FTP Clients Using The PASV Command] - [PaulDotCom] - Cool paper which is able to do portscanning and banner grabbing using the FTP PASV command. Includes PoC.
= Other Stories of Interest =