Advisories

[Google Translation : Patched after gap of 6-8 months.]


[5 January 2007] Google Translation Phishing Vulnerability.

[Google News]


[15 October 2007] Google News Network Phishing Vulnerability.

[Microsoft I.E.]


[15 August 2007] Internet Explorer Pop up Blocker Bypassing and Dos Vulnerability.[POC]

[*] [XFFDB 36027] XForce Xfdb : Microsoft Internet Explorer ActiveX popup blocker denial of service.

[Microsoft I.E.]


[21 June 2007] Internet Explorer Domain Specification Dos and Page Suppressing.

[*] NVD-NIST[CVE-2007-3550] : Microsoft Internet Explorer Zone Denial of Service Vulnerability.

[*] [BID 24744] SecurityFocus : Microsoft Internet Explorer Zone Denial of Service Vulnerability.

[*] [XFFDB 35455] XForce Xfdb : Microsoft Internet Explorer Zone domain name denial of service.

[*] http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35503


http://www.securiteam.com/windowsntfocus/5KP010KM0G.html

http://www.net-security.org/vuln.php?id=4236

http://securityreason.com/securityalert/2855

http://www.security-database.com/detail.php?cve=CVE-2007-3550

[Yahoo Network]


[19 June 2007] Yahoo Search Engine Phishing Vulnerability.

[19 June 2007] Yahoo Network Redirection and Phishing Vulnerability.

[Verisign]


[5 July 2007] Phishing Vulnerability in Verisign Network.

[Google Networks]


[1 September 2006] Google - Orkut Link Traversing,Bug.

[1 April 2006] Google Metacharacter [*] Spamdexing Anomaly,Bug.

[AOL Networks]


[2 March 2007] Critical Vulnerabilities in AOL Network [SQL Injection , Redirection and Phishing]

[23 November 2006] Severe Redirection and Phishing Vulnerability in AOL Screename Network.

[MSN Networks]


[20 November 2006] Redirection Vulnerability in Feeds MSN.

[31 October 2006] SQL Injection Vulnerability in MSN Messenger Network.

[18 September 2006] MSN Msid Phishing and Redirection Vulnerability.

[Security Companies]

Due to predefined policies , SecNiche cannot provide the explanation of the flaws and bugs.The overall structure is presented


[http://www.sqlsecurity.com]

[12 June 2007] SQL Security.
Phishing and Redirection Vulnerability.
Explanation: The vulnerability was reported and not patched.


[http://portal.spidynamics.com]

[17 April 2007] SPI Dynamics.
ASP.net Phishing Vulnerability.
Explanation: The vulnerability was patched in 12 hours.


[http://www.sectheory.com]

Read:http://ha.ckers.org/blog/20070316/forgetting-global-replace-xss-woes/

[15 March 2007] SEC Theory.
Severe XSS Vulnerability in Contact Form.
Explanation: The Vulnerability was patched as soon as reported.


[http://www.coresecurity.com]

[2006] CORE Security.
XSS vulnerability in PHP based Form pages.
Explanation: The vulnerability was patched and redesigning of website.