Great Reviews!Need help setting up your website, installing Apache, PHP, MySQL, or RavenNuke(tm)?Need help customizing or designing scripts?Please contact us via the Contact Us option for further details and pricing.
Mass Attack JavaScript injection - hundreds of thousands affected
Websense® Security Labs has been tracking a recent development of the malicious JavaScript injection that compromised thousands of domains at the start of this month, just 2-3 weeks ago. The attackers have now switched over to a new domain as their hub for hosting the malicious payload in this attack. We have no doubt that the two attacks are related as our brief analysis in our blog will detail. In the last few hours we have seen the number of compromised sites increase by a factor of ten.
This mass injection is remarkably similar to the attack we saw earlier this month. When a user browses to a compromised site, the injected JavaScript loads a file named 1.js which is hosted on http://www.nihao[removed].com The JavaScript code then redirects the user to 1.htm (also hosted on the same server). Once loaded, the file attempts 8 different exploits (the attack last April utilised 12). The exploits target Microsoft applications, specifically browsers not patched against the VML exploit MS07-004 as well as other applications. Ominously files named McAfee.htm and Yahoo.php are also called by 1.htm but are no longer active at the time of writing.
There are further similarities too between the two mass attacks. Resident on the latest malicious domain is a tool used in the execution of the attack. An analysis of that tool can be found in the ISC diary entry here. Mentioned in that diary entry is http://www.2117[removed].net. Our blog on that attack can be found here. It appears that same tool was used to orchestrate this attack too.
The number of sites affected is in the hundreds of thousands. Casualties of the previous attack include various US news web sites, a major Israeli shopping portal, and numerous travel sites.
Websense® security customers are protected from this attack.
Posted by Raven on Tuesday, April 22, 2008 @ 17:26:32 EDT (1011 reads) ( | Score: 0)
DESCRIPTION: Some vulnerabilities have been reported in OpenOffice, which can be exploited by malicious people to potentially compromise a user's system. Successful exploitation of the vulnerabilities may allow execution of arbitrary code. The vulnerabilities are reported in versions prior to 2.4.
Posted by Raven on Thursday, April 17, 2008 @ 22:32:39 EDT (1104 reads) (Read More... | 1810 bytes more | Score: 0)
SOFTWARE:
Safari 3.x http://secunia.com/product/17989/
Safari for Windows 3.x http://secunia.com/product/17978/
DESCRIPTION: Some vulnerabilities have been reported in Safari, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially to compromise a user's system. Successful exploitation may allow execution of arbitrary code e.g. when a user visits a malicious web page. The vulnerabilities are reported in versions prior to 3.1.1.
Posted by Raven on Thursday, April 17, 2008 @ 21:55:11 EDT (1066 reads) (Read More... | 1867 bytes more | Score: 0)
Mozilla Firefox Javascript Garbage Collector Vulnerability
SOFTWARE: Mozilla Firefox 2.0.x http://secunia.com/product/12434/
DESCRIPTION: A vulnerability has been reported in Mozilla Firefox, which can potentially be exploited by malicious people to compromise a user's system. The vulnerability is reported in version 2.0.0.13. Prior versions may also be affected.
Posted by Raven on Thursday, April 17, 2008 @ 20:12:50 EDT (1031 reads) (Read More... | 1307 bytes more | Score: 0)
CSS Driven PhpNuke Theme Released
gotcha writes "MidTown is a CSS driven phpnuke theme that uses no tables for the main layout and contains valid XHTML 1.0 Transitional code. This leads to faster page rendering, reduced server load, and better search engine optimization. MidTown is a variable width phpnuke theme that will stretch to fit the browser window. The left blocks can easily be switched on/off for the forums by changing a single setting. The welcome area (right below the tabs) can be set to show the clock and welcome message(default) or it can be changed to a search form for forums or news. MidTown includes a matching forum template and account icons.
You can get more info and check out the screenshots on the MidTown Product Page
RavenNuke users can get $10 off any theme on nukecoder.com by entering the coupon code RAVENNUKE"
Posted by Raven on Wednesday, April 16, 2008 @ 19:58:00 EDT (710 reads) ( | Score: 0)
3 New Themes Released From Clan Themes
xgstq writes "Clan Themes is please to announce 3 new Clan
Templates they are
Posted by Raven on Wednesday, April 16, 2008 @ 19:56:35 EDT (635 reads) ( | Score: 0)
Feedback Resecured 1.0.6 Released Today, Update Now
slaytanic_wehrmacht writes "Tired of being receiving spam trought your feedback module? if your answer is positive then this module is for you, this is a resecured enhancement of the default Feedback module and was made with security on mind.
Now Is just time for this new release of Feedback Resecured to hit the lights. DOWNLOAD your copy and give this module a try.
CHANGELOG:
* Improved general module usability
* Kept improving the captcha system
* Some aesthetic changes
* More security improvements
* Added Turkish language file
* Fixed some PHP warnings
DESCRIPTION: A vulnerability has been reported in Coppermine Photo Gallery, which can be exploited by malicious people to conduct SQL injection attacks. The vulnerability is reported in version 1.4.17. Prior versions may also be affected.
Posted by Raven on Monday, April 14, 2008 @ 14:48:05 EDT (1149 reads) (Read More... | 1225 bytes more | Score: 0)
Dynamic Keywords 1.1.0 Released, Now With Dynamic Description Support
slaytanic_wehrmacht writes "
Well, after some improvements and fixes Slaytanic Scripts is now proud to release version 1.1.0 of Dynamic Keywords. The most important change is the brand new support for Dynamic Description and not just keywords as before. Do not hesitate any longer and start trying this essential addon.
CHANGELOG:
* Added dynamic description meta tag support
* Improved the module generation function
* PHP/HTML code cleanup
* Added a tooltip system to the admin section
* Minor fixes
Posted by Raven on Wednesday, April 09, 2008 @ 16:19:52 EDT (614 reads) ( | Score: 0)
New Clan Theme For RavenNuke™
Like clan themes? Then goto RavenNuke™ Site and change your theme to CT_RN via Your Account to view it. This theme was made exclusively for RavenNuke™ by Clan-Themes. . Oh, btw ... did I forget to mention it uses NO tables? Completely CSS driven
We haven't yet modified our internal images for this theme so don't let that distract you!
Posted by Raven on Wednesday, April 09, 2008 @ 16:15:16 EDT (1122 reads) ( | Score: 0)
![[Valid RSS]](http://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::
