Welcome! Log In Create A New Profile

Advanced

Crediar & The intrusion

Posted by pokeglobe 
Crediar & The intrusion
March 22, 2010 01:18AM
Just so we're clear, this is no big deal, I'm not complaining or saying ZOMG haxx.

I went to [crediar.no-ip.com]
and Norton came up saying it blocked an intrusion. (Lol)

Risk name: HTTP Malicious Javascript Heap Spray BO
Attacking computer: [crediar.no-ip.com] (IP)
Attacker URL: crediar.no-ip.com/
Destination Addr: Me (My IP)
Source Addr: His site's IP.

Desc:
Network traffic from [crediar.no-ip.com] matches the signature of a known attack.
The attack resulted from /FIREFOX LOCATION/Firefox.exe
Then it says to disable this blablabla.

Just thought I would share.
Re: Crediar & The intrusion
March 22, 2010 01:57AM
Going there crashes Firefox for me ...
Re: Crediar & The intrusion
March 22, 2010 02:48AM
Quote
Arikado
Going there crashes Firefox for me ...
Yeah, me too.
Re: Crediar & The intrusion
March 22, 2010 03:38AM
I can access the site with Internet Explorer and, if using the NoScript add-on, Firefox. However, Firefox crashes on that site when I allow scripts. I experienced no other issues, except that none of the links on the site work.
Re: Crediar & The intrusion
March 22, 2010 04:42AM
Crashes for me too.
Re: Crediar & The intrusion
March 22, 2010 05:11AM
Yeah, AVAST! doesn't like his website either
Re: Crediar & The intrusion
March 25, 2010 04:44AM
I haven't made much of an effort to figure out what the JS on the page actually does, but it doesn't look particularly friendly.
I lol'd at these, though (won't crash you):
http://crediar.no-ip.com/index.htm
http://crediar.no-ip.com/index.html

JS:
	var str = unescape("%u4141%u4141");
	var str2 = unescape("%u0000%u0000");
	var finalstr2 = mul8(str2, 49000000);
	var finalstr = mul8(str,   21000000);


document.write(finalstr2); 
document.write(finalstr); 

function mul8 (str, num) {
	var	i = Math.ceil(Math.log(num) / Math.LN2),
		res = str;
	do {
		res += res;
	} while (0 < --i);
	return res.slice(0, str.length * num);
}
Sorry, only registered users may post in this forum.

Click here to login