Category Archives: Article

Adobe Flash Player and AIR Domain Sandbox Bypass Vulnerability (APSB10-06)

Two (2) potential risks associated with this vulnerability are Denial of Service issue (CVE-2010-0187) Allowing users to make unauthorized cross-domain requests We recommend verifying the version number of the present adobe flash player and then reviewing the solution in order to resolve this issue. See below on how to verify the version number and reviewing the… Read More »

Adobe Acrobat and Reader Multiple Vulnerabilities (APSB16-14)

Users on Windows and Macintosh systems can utilize the Adobe product’s update mechanism. The default configuration is set to run automatic update checks on a regular schedule. Adobe recommends users update their software installations to the latest versions by following the instructions below. The latest product versions are available to end users via one of… Read More »

How to verify Account Brute Force Possible Through IIS Printers Directory Authentication Interface

Qualys scanning found a vulnerabilities-“Account Brute Force Possible Through IIS Printers Directory Authentication Interface” as below. I need to do black box testing to verify this vulnerability. If anybody would be willing to help, it would be greatly appreciated! ————————–——– THREAT: A “printers/” directory has been found active on your Microsoft IIS Server and is… Read More »

Account Brute Force Possible Through IIS Printers Directory Authentication Interface

Qualys scanning found a vulnerabilities-“Account Brute Force Possible Through IIS Printers Directory Authentication Interface” as below. I need to do black box testing to verify this vulnerability. If anybody would be willing to help, it would be greatly appreciated! ————————–——– THREAT: A “printers/” directory has been found active on your Microsoft IIS Server and is… Read More »

How to verify “Account Brute Force Possible Through IIS localstart.asp Authentication Interface” vulnerability?

Qualys scanning found a vulnerabilities-“Account Brute Force Possible Through IIS localstart.asp Authentication Interface” as below. I need to do black box testing to verify this vulnerability. If anybody would be willing to help, it would be greatly appreciated! THREAT: The file “localstart.asp” is part of the default Microsoft IIS install. By default it is password… Read More »