• Programming Error Category: Insecure Interaction Between Components (8 errors)
• Programming Error Category: Risky Resource Management (10 errors)
• Programming Error Category: Porous Defenses (7 errors)

Programming Error Category: Insecure Interaction Between Components

[1] CWE-79: Failure to Preserve Web Page Structure (‘Cross-site Scripting’)

Cross-site scripting (XSS) is one of the most prevalent, obstinate, and dangerous vulnerabilities in web applications…If you’re not careful, attackers can…MORE >>

[2] CWE-89: Failure to Preserve SQL Query Structure (aka ‘SQL Injection’)

If attackers can influence the SQL that you use to communicate with your database, then they can…MORE >>

[4] CWE-352: Cross-Site Request Forgery (CSRF)

With cross-site request forgery, the attacker gets the victim to activate a request that goes to your site. Thanks to scripting and the way the web works in general, the victim…MORE >>

[8] CWE-434: Unrestricted Upload of File with Dangerous Type

You may think you’re allowing uploads of innocent images…MORE >>

[9] CWE-78: Failure to Preserve OS Command Structure (aka ‘OS Command Injection’)

When you invoke another program on the operating system, but you allow untrusted inputs to be fed into the command string that you generate for executing the program, then you are inviting attackers…MORE >>

[17] CWE-209: Information Exposure Through an Error Message

If you use chatty error messages, then they could disclose secrets to any attacker who dares to misuse your software. The secrets could cover a wide range of valuable data…MORE >>

[23] CWE-601: URL Redirection to Untrusted Site (‘Open Redirect’)

While much of the power of the World Wide Web is in sharing and following links between web sites, typically there is…MORE >>

[25] CWE-362: Race Condition

Attackers will consciously look to exploit race conditions to cause chaos or get your application to cough up something valuable…MORE >>

Programming Error Category: Risky Resource Management

[3] CWE-120: Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’)

Buffer overflows are Mother Nature’s little reminder of that law of physics that says if you try to put more stuff into a container than it can hold, you’re…MORE >>

[7] CWE-22: Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’)

While data is often exchanged using files, sometimes you don’t intend to…MORE >>

[14] CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program (‘PHP File Inclusion’)

Not a lot of Top 25 weaknesses are unique to a single programming language, but that just goes to show how special this one is. The idea…MORE >>

[12] CWE-805: Buffer Access with Incorrect Length Value

A popular insult is: “Take a long walk off a short pier.” One programming equivalent for this… MORE >>

[13] CWE-754: Improper Check for Unusual or Exceptional Conditions

Security-wise, it pays to be cynical. If you always expect the worst…MORE >>

[15] CWE-129: Improper Validation of Array Index

If you’ve allocated an array of 100 objects or structures, and an attacker provides an index that is…MORE >>

[16] CWE-190: Integer Overflow or Wraparound

In the real world, 255+1=256. But to a computer program, sometimes 255+1=…MORE >>

[18] CWE-131: Incorrect Calculation of Buffer Size

In languages such as C, where memory management is the programmer’s responsibility, there are many opportunities for error…MORE >>

[20] CWE-494: Download of Code Without Integrity Check

You don’t need to be a guru to realize that if you download code and execute it, you’re trusting that the source of that code isn’t malicious. But attackers can perform all sorts of tricks…MORE >>

[21] CWE-770: Allocation of Resources Without Limits or Throttling

If someone calls in and places an order for a thousand pizzas (with anchovies) to be delivered immediately, you’d quickly put a stop to that nonsense. But…MORE >>

Programming Error Category: Porous Defenses

[5] CWE-285: Improper Access Control (Authorization)

If you don’t ensure that your software’s users are only doing what they’re allowed to, then attackers will try to exploit your improper authorization and…MORE >>

[6] CWE-807: Reliance on Untrusted Inputs in a Security Decision

Driver’s licenses may require close scrutiny to identify fake licenses, or to determine if a person is using someone else’s license. Software developers…MORE >>

[10] CWE-311: Missing Encryption of Sensitive Data

If your software sends sensitive information across a network, such as private data or authentication credentials, that information…MORE >>

[11] CWE-798: Use of Hard-coded Credentials

Most of the CWE Top 25 can be explained away as an honest mistake; for this issue, though, customers…MORE >>

[19] CWE-306: Missing Authentication for Critical Function

In countless action movies, the villain breaks into a high-security building by crawling through heating ducts…MORE >>

[22] CWE-732: Incorrect Permission Assignment for Critical Resource

If you have critical programs, data stores, or configuration files with permissions that make your resources accessible to the world – well, that’s just what they’ll become…MORE >>

[24] CWE-327: Use of a Broken or Risky Cryptographic Algorithm

You may be tempted to develop your own encryption scheme in the hopes of making it difficult for attackers to crack. This kind of grow-your-own cryptography is a welcome sight to attackers…MORE >>

The PHP development team would like to announce the immediate availability of PHP 5.2.11. This release focuses on improving the stability of the PHP 5.2.x branch with over 75 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release.

Security Enhancements and Fixes in PHP 5.2.11:

• Fixed certificate validation inside php_openssl_apply_verification_policy. (Ryan Sleevi, Ilia)
• Fixed sanity check for the color index in imagecolortransparent(). (Pierre)
• Added missing sanity checks around exif processing. (Ilia)
• Fixed bug #44683 (popen crashes when an invalid mode is passed). (Pierre)

Further details about the PHP 5.2.11 release can be found in the release announcement, and the full list of changes are available in the ChangeLog. ]]> http://www.webbyinfo.com/php-5-2-11-released/feed/ 1 http://www.webbyinfo.com/firefox-20-beta-2/ http://www.webbyinfo.com/firefox-20-beta-2/#comments Thu, 31 Aug 2006 14:45:23 +0000 gladwing http://www.blog.glad-win.com/?p=68 Firefox 2 Beta 2 is a developer preview release of our next generation Firefox browser and it is being made available for testing purposes only. Firefox 2 Beta 2 is intended for Web application developers and our testing community. Current users of Firefox 1.x should not use Firefox 2 Beta 2 and expect all of their extensions and plugins to work properly.

These Release Notes cover what’s new, download and installation instructions, known issues and frequently asked questions for the Firefox 2 Beta 2 release. Please read these notes and the bug filing instructions before reporting any bugs to Bugzilla.

Give us your feedback through this feedback form.

Yes folks, the Indian government has decided to censor blogs and refused to explain why. This morning Shivam Vij managed to talk to Dr Gulshan Rai, director of CERT-IN, the only body authorised to issue directives to ISPs. His response: “Somebody must have asked for some sites to be blocked. What is your problem?”

If any Boing Boing readers in India find several sites inaccessible today, please call your ISP and demand to know why. If you can help, please join the coordinating group: Link.

Link to Shivam’s post, and Jace is following developments on his blog, here.

Manish adds,

The block is still spreading through Indian ISPs. This recalls Pakistan’s Blogspot ban during the Danish cartoon controversy and India’s Yahoo Groups ban in ’03 to shut down a separatist forum.

Dina Mehta says,

The plot gets thicker and thicker as more bloggers are getting alerted to the fact that an increasing number of Indian ISP’s are banning blogspot and typepad blogs and geocities.com. Several detailed posts on this, with regular updates here: withinandwithout.com, Conversations with Dina, and Travel Tales from India.

There’s a wiki here: Link. We’re treading with a little caution before we go whole-hog at the government. There is a possibility that it is a mistake – where a directive from the government on a few blogs might have been misrepresented by ISP’s here – who have blocked the entire sites.

Amit Varma says,

Amit Agarwal has some tips on how Indian bloggers can circumvent the ban on Blogspot here: Link. More here: Link.

Update, 11AM PT: Shii says,

An Indian political blog is reporting that the ban was initiated by the Indian intelligence service to stop terrorism: Link. According totheir source, the terrorists are using blogs to communicate. Not only is this useless (because the terrorists can simply use proxies), it’s akin to shutting off the country’s telephone service because terrorists talk to each other through phones.

Jim says,

Indian Censorship can easily be bypassed when using TorPark. It’s a no-install version of Firefox that uses the Tor Network for communication. This should also work in China and other countries that filter the web.

And of course, this and many other censorship workarounds at BoingBoing’s “How to Defeat Censorware.”

Vijay says,

I am not yet facing any of the blocking effects as reported by several Indian bloggers. I have noticed a certain pattern here. The blocking seems to be affecting city users while rural netizens have been spared of this curb for now. I have mentioned this in detail here.