SECUNIA ADVISORY ID: SA29407

VERIFY ADVISORY: http://secunia.com/advisories/29407/

CRITICAL: Highly critical

IMPACT: DoS, System access

SOFTWARE: WinRAR 3.x - http://secunia.com/product/890/

DESCRIPTION: Some vulnerabilities have been reported in WinRAR, which can potentially be exploited by malicious people to compromise a vulnerable system.
 Read More...

mars writes:  

PHPNuke Theme Released
GuildWarsRed is a gorgeous fast loading PHPNuke Theme designed for a GuildWars guild site.

Preview the GuildWars Red theme at the PortalThemes PHPNuke Themes test site.
(Select GuildWarsRed in the top left dropdown list.)
Includes a matching forum theme.
PSD file included for the header.

Be sure to checkout our wide selection of PHPNuke Themes at our PHPNuke Theme Site
PortalThemes.com

nukeevangelist writes:  

Dear friends on Ravenphpscripts.com,

Now we have many modules, blocks and hacks running in PHPNuke. A great one ... Recruitment-form [in action]: Counter-Strike Recruitment Form version 3.0 for your phpnuke site is now available.

The Recruitment Form has been completely configured into a full PHP-Nuke module for easy installation and management. The form is configured to use PHP mail function to send the forms information to the site administrators email address.
This cool module also contains a Readme.txt on how to install it. The module will work on phpnuke 7.x and up.

Travel over to the Recruitment-form [in action] :: get the free code and add your feedback - thank you very much for your help.

nukeevangelist writes:  

Yes, you really are seeing a NukeWeather(tm) block on the top left column. I have spent tons of time getting the new version to this point, and hope to have a public beta in the near future. In the mean time try setting your own city and help me check this part for bugs.

So just travel over to NukeScripts.net and see the great news: The new NukeWeather-block!

slaytanic_wehrmacht writes:  

I am very happy to introduce you the latest and greatest release of the well known content module replacement for PHP-Nuke and derivatives. Lot of things have been fixed so do not hesitate any longer and download your copy right away and start enjoying the great unique features that this module can bring you.

Exclusive Features:
* 100% XHTML 1.0 compliant.
* Users can submit content pages.
* You can set a custom image for the categories.
* You can set a featured content for each category.
* Ability to easily print content pages and/or even export them to PDF.
* You can share content pages with friends.
* Automagic integration with PhpNukeMailer.
* And even more.

Changelog: Read More...

From Trend Micro falls victim to Web hack

It’s not much fun when one of your security vendors falls to a Web attack. Infoworld reports that TrendMicro was a victim of a recent Web attack that used legit sites to deliver malware.

According to InfoWorld Trend Micro removed the infected pages from its Web site. While the attack is unfortunate for Trend Micro at least it had company.

McAfee says almost 200,000 Web pages have been compromised in a little more than a week.

Here’s what McAfee had to say:

The attack seems to have started more than a week ago, and nearly 200,000 web pages have been found to be compromised, most of which are running phpBB. This contrasts yesterday’s attack in that the vast majority of those were active server pages (.ASP). The ASP attacks are different than the phpBB ones in that the payload and method are quite different. Various exploits are used in the ASP attacks, where the phpBB ones rely on social engineering. phpBB mass hacks have occurred in the past, including those done by the Perl/Santy.worm back in 2004.

Read the rest of the story