[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] DAVOSET v.1.1.1

To: <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] DAVOSET v.1.1.1
From: "MustLive" <mustlive@xxxxxxxxxxxxxxxxxx>
Date: Sat, 20 Jul 2013 16:07:06 +0300

Hello participants of Mailing List.

After making public release of DAVOSET
(http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/2013-June/008850.html),
I've made next update of the software. Yesterday DAVOSET v.1.1.1 was
released - DDoS attacks via other sites execution tool
(http://websecurity.com.ua/davoset/).

Download DAVOSET v.1.1.1:

http://websecurity.com.ua/uploads/2013/DAVOSET_v.1.1.1.rar

Use, don't abuse.

Besides improvements in new version, in 1.1.1 there were added a lot of new
zombie-services - 105 new services, most of them are web sites with
Googlemaps plugin for Joomla. Also I've improved work with services which
don’t support "http://"; for target site (this is made for Googlemaps). Last
week one man, who like DAVOSET, sent me large list of zombie-servers for my
tool (big thanks for him). In that list I've found a lot of web sites with
Googlemaps, which I checked and found multiple vulnerabilities in this
plugin, which I disclosed recently.

Best wishes & regards,
MustLive
Administrator of Websecurity web site

http://websecurity.com.ua


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Barracuda CudaTel 2.6.02.040 - Remote SQL Injection Vulnerability
Next by Date: Re: [Full-disclosure] [SE-2012-01] New Reflection API affected by a known 10+ years old attack
Previous by thread: [Full-disclosure] Barracuda CudaTel 2.6.02.040 - Remote SQL Injection Vulnerability
Next by thread: [Full-disclosure] [CVE-2013-2137] Apache OFBiz XSS vulnerability in the "View Log" screen of the Webtools application
Index(es):
- Date
- Thread