Posts Tagged ‘symantec’

Symantec website got hacked

November 27th, 2009

A self-proclaimed grey-hat hacker has located a critical SQL injection vulnerability in a website belonging to security giant Symantec. The flaw can be leveraged to extract a wealth of information from the database including customer and admin login credentials, product serial numbers, and possibly credit card information.

The flaw was found by a Romanian hacker going by the online handle of Unu, according to whom an insecure parameter of a script from the pcd.symantec.com website, allows for a blind SQL injection (SQLi) attack to be performed. In such an attack, the hacker obtains read and/or write permission to the underlying database of the vulnerable website.

symantec » Read more: Symantec website got hacked

Popularity: 42% [?]

No comments »

Posted in Linux, Tech, Web and Applications, Windows

Tags:

Get Adobe Flash playerPlugin by wpburn.com wordpress themes