|
The Web Hacking Incidents Database
Last update:17 February 2008
List of Incidents for a Classification
Please note that classifications are a new feature and not all entries in WHID are already classified, so when you get a certain number of entries for a classification, WHID might have more records matching that classification that we did not classify yet. We hope to complete the classification process soon.
Select classification:
Attack Method, Country, Location, Origin, Outcome, Software, Vertical Select criteria for classification "Attack Method":
Abuse of Functionality, Administration Error, Brute Force, Buffer Overflow, Content Spoofing, Credential/Session Prediction, Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS), Denial of Service, Directory Indexing, Drive by Pharming, Failure to Restrict URL Access, Format String Attack, HTTP Response Splitting, Improper Error Handling, Insecure Direct Object Reference, Insufficient Anti-automation, Insufficient Authentication, Insufficient Authorization, Insufficient Process Validation, Insufficient Session Expiration, Known Vulnerability, LDAP Injection, Misconfiguration, OS Commanding, Other, Path Traversal, Predictable Resource Location, Redirection, Session Fixation, Session Hijacking, SQL Injection, SSI Injection, Unintentional Information Disclosure, Unknown, Weak Password Recovery Validation, XPath Injection
List of incidents for which Attack Method is OS Commanding
10 incidents listed
Reported: 30 August 2007Occurred: 07 August 2007
Classifications:
- Attack Method: SQL Injection
- Attack Method: OS Commanding
- Vertical: Technology
This gem is very interesting since it happened on Gentoo servers. It therefore combines transparency into the incident that only an open source project can offer with the importance and resource of a large one. As a result we have a detailed report about the vulnerability, exploit attempts and event people shouting at each other during the patching process.
What can we learn from this? That no server is secure, and that patching is hard.
References:
Reported: 12 August 2007Occurred: 01 August 2007
Classifications:
- Attack Method: Known Vulnerability
- Attack Method: OS Commanding
- Country: Germany
- Outcome: Downtime
- Software: Confixx
- Vertical: Service Providers
A command injection vulnerability at 1&1, a large German hosting provider, lead to denial of service and possible home page modification at 30 servers and up to 1700 web sites.
References:
Reported: 30 April 2006Occurred: 25 April 2006
Classifications:
- Attack Method: OS Commanding
A hacker successfully abuse a vulnerability in Horde to penetrate a site owned by the National Security Agency of the Slovak Republic
References:
Reported: 08 November 2005Occurred: 04 October 2005
Classifications:
- Attack Method: OS Commanding
Exploited unpatched Twiki
References:
Reported: 23 August 2005Occurred: 21 August 2005
Classifications:
- Attack Method: OS Commanding
Sites where defaced by utilizing an issue in an XMLRPC library used by PHP
References:
Reported: 11 July 2005Occurred: 22 February 2005
Classifications:
- Attack Method: OS Commanding
- Attack Method: Weak Password Recovery Validation
- Attack Method: Insufficient Authentication
Details remain sketchy, but news reports include social engineering, a guessable secret question for password recovery, and a known vulnerability is BEA WebLogic
References:
Reported: Occurred: 05 July 2005
Classifications:
- Attack Method: SQL Injection
- Attack Method: OS Commanding
- Attack Method: Insufficient Authorization
- Outcome: Disclosure Only
A person who discovered an SQL injection vulnerability in a USC system and informed security focus about the flaw was criminally charged with breaking into the system.
References:
Reported: Occurred: 15 December 2000
Classifications:
- Attack Method: OS Commanding
Executing local commands using URL parameters
References:
Reported: Occurred: 21 December 2004
Classifications:
- Attack Method: OS Commanding
Worm used Google to locate sites vulnerable to OS
References:
Reported: Occurred: 25 December 2004
Classifications:
- Attack Method: OS Commanding
phpBB worm
References:
This work is licensed under the Creative Commons Attribution License. To view a copy of this license, visit http://creativecommons.org/licenses/by/2.5/ or send a letter to Creative Commons, 559 Nathan Abbott Way, Stanford, California 94305, USA.
|
