Segunda-feira, 23 de Março de 2009

Compromised Site: Embassy of Portugal in India

 

não fomos os unicos....mas é pena ver o nome..."Portugal" nos foruns de segurança pelos maus motivos...

 

" Websense® Security Labs™ ThreatSeeker™ Network has discovered that the official Web site of the Embassy of Portugal in India has been compromised and is infecting the machines of site visitors with malicious code. Malicious code has been inserted onto the main page of the site via multiple iframes. These iframes redirect to the pages of different hosts that contain malicious obuscated JavaScript code that takes advantage of the following exploits: VMLRender exploit (MS07-004), 2007 WinZip FileView ActiveX CreateNewFolderFromName method exploit (CVE-2006-6884), Apple QuickTime RTSP exploit (CVE-2007-0015), MS Internet Explorer WebViewFolderIcon exploit (CVE-2006-3730), Internet Explorer (MDAC) Remote Code Execution exploit (MS06-014), and Adobe Reader PDF exploit (CVE-2007-5659).

The Embassy of Portugal in India provides visitors with brief information about bilateral relations between the countries, related news and events, tourism, and consular information."

 


publicado por securwww às 13:42
link do post | comentar | favorito
|

.mais sobre mim

.pesquisar

 

.Setembro 2009

Dom
Seg
Ter
Qua
Qui
Sex
Sab

1
2
3
4
5

6
7
8
9
10
11
12

13
14
15
16
17
18
19

20
21
22
23
25
26

27
28
29
30


.Subscrever por e-mail

A subscrição é anónima e gera, no máximo, um e-mail por dia.

.posts recentes

. ...

. a familia kido conficker ...

. http://www.securitywizard...

. phishing sul-americano na...

. howtowipeyourdrive

. hardening de servidores

. Debian - denial of servic...

. Compromised Site: Embassy...

. social networking music

. social networking or soci...

.arquivos

. Setembro 2009

. Abril 2009

. Março 2009

. Fevereiro 2009

. Outubro 2008

.tags

. todas as tags

SAPO Blogs

.subscrever feeds