The HP Security Laboratory Blog -

On Web Application Scanner Comparisons...

On Wednesday, 2/3/2010, there was a report released by Larry Suto which promoted itself as reporting the "accuracy and [the] time costs" of using web application scanners to identify vulnerabilities. This is the second review we’ve seen...

Published 02-08-2010 2:58 PM by matt wood

Personal Health Information safety rules not being enforced

Although it didn't get a lot of publicity at the time, a November survey by the Healthcare Information and Management Systems Society (HIMSS) discovered that 1 in 4 responders had no procedure in place to conduct a security risk analysis to identify...

Published 02-04-2010 3:29 PM by mark.painter

Top Five Web Application Vulnerabilities 1/11/10 - 1/24/10

1) HP Power Manager 'formExportDataLogs' Directory Traversal Remote Code Execution Vulnerability HP Power Manager is susceptible to a remote Directory Traversal vulnerability that could give an attacker the means to overwrite arbitrary files and...

Published 01-25-2010 10:47 PM by mark.painter

China, Google and Web Security

Google recently announced that its China based location was the victim of an attack that targeted and compromised a critical internal system used to track the email accounts of those on China’s watch list. The system was designed to comply with...

Published 01-15-2010 10:22 PM by todd.densmore

Filed under: hacked, vulnerabilities, Web Application Security, data breach, HP Application Security, Google, China

".htaccess" for the win! Stomp overaccesible folder vulns.

All too often organizations are exposing themselves far too much due to lazy administration and the web applications they install aren't doing them any favors. I doubt any one has the numbers, but websites that are just "installs" of some...

Published 01-13-2010 9:08 AM by matt wood

Filed under: Research, vulnerabilities, Apache HTTP Server

Top Five Web Application Vulnerabilities 12/15/09 - 1/10/10

1) Microsoft IIS ASP Multiple Extensions Security Bypass IIS is susceptible to an ASP extensions security bypass vulnerability. IIS versions 5.x and 6.x determine a file extension by only using a portion of the filename before a “;” (semicolon...

Published 01-11-2010 9:39 PM by mark.painter

Top Five Web Application Vulnerabilities 12/1/09 - 12/14/09

1) HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities HP OpenView Network Node Manager is susceptible to multiple remote code execution vulnerabilities. Many of these are exploitable via HTTP requests. Successful exploitation...

Published 12-14-2009 8:35 PM by mark.painter

National data breach notification bill passed in U.S. House

The US House of Representatives has passed new national standards for data breach notifications. Types of data that would require notice be delivered to affected individuals include the standard assortment of social security numbers, credit card information...

Published 12-10-2009 9:44 PM by mark.painter

Top Five Web Application Vulnerabilities 11/09/09 - 11/30/09

1) IBM WebSphere Application Server Administrative Console HTML Injection Vulnerability IBM WebSphere Application Server is susceptible to an HTML Injection vulnerability. HTML Injection is used to add content into a web server’s response, which...

Published 12-01-2009 9:12 PM by mark.painter

SSLv3/TLS Renegotiation Stream Injection

Recently, Thursday 11/5/09, a few folks over on the IETF mailing list went public with a limited Man-in-the-Middle attack on SSLv3 and TLS. There has been quite a bit of press coverage on this issue's severity. However, the way this attack can be...

Published 11-16-2009 11:00 AM by matt wood

Filed under: Research, TLS, SSLv3, MitM

Top Five Web Application Vulnerabilities 10/27/09 - 11/8/09

1) HP Power Manager Management Web Server Login Remote Code Execution Vulnerability HP Power Manager is susceptible to a remote code execution vulnerability via the login form of the web based management web server due to improper bounds-checking of user...

Published 11-09-2009 8:29 PM by mark.painter

Filed under: SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery

Now Hiring: HP Security Center Pen Tester

HP is looking for a qualified Sr. Application Security Consultant that has deep Application Security experience. Consultant should have experience with performing Web Application Assessments, Network Penetration Testing, and be capable of manually exploiting...

Published 11-05-2009 6:40 PM by mark.painter

Filed under: Pen Tester

Take your %00 and shove it

We've recently been optimizing our Local File Inclusion (LFI) audit engine. Part of that effort has included poking around in different frameworks (php, .NET, java, ruby/rails, python, perl... etc) and seeing how many ways a developer might fall prey...

Published 11-04-2009 11:05 AM by matt wood

Filed under: PHP, Null Byte, Audit Engines, Local File Inclusion, LFI, %00 byte

HP Application Security Center at OWASP DC 11/11-13

The HP Application Security Center has several presentations at the upcoming OWASP Global Summit In Washington, DC. Ryan English, Rafal Los, Dennis Hurst and Kim Dinerman will all be there. More information about the summit can be found here: OWASP Global...

Published 11-03-2009 9:26 PM by mark.painter

Filed under: OWASP, SANS, Dennis Hurst, Caleb Sima, Matt Wood

WebInspect Tips: Changing settings to improve scans

Although running WebInspect with ‘out of the box’ scans settings might be the easiest way to start a scan, it is almost sure to produce unexpected results. Configuring any web application scanner is tricky, but by following these simple steps...

Published 10-28-2009 7:41 PM by todd.densmore

Filed under: WebInspect, Web Application Security

The HP Security Laboratory Blog

Syndication

Recent Posts

Tags

Archives