Anyone who has tested even a small number of web configuration interfaces on embedded devices, such as managed routers, VoIP gateways and wireless routers, knows that these devices are notorious for web application vulnerabilities. It is not uncommon for these devices to be vulnerable to…
Monthly Archives: January 2009
Free Standalone Acunetix Report Viewer available for download
The Acunetix Report Viewer is a free standalone application that can be used to view Acunetix report (.pre) files only. Why should one download the Report Viewer? The report’s Table of Contents is available in the Report Viewer. This is not available when reports are…
Image upload forms used to hijack websites
In the past days I came across a stimulating blog post titled “Dissecting a Multistage Web Attack that uses the recent IE7 0day”. The authors described how a vulnerable web application was then able to infect web browsers visiting the infected website. The attackers, who…