Line 902: DbConnection myConnection = provider.CreateConnection();
Line 903: myConnection.ConnectionString = ConnectionIndependent.getConnectionString();
Line 904: myConnection.Open();
Line 905: DbCommand cmd = myConnection.CreateCommand();
Line 906: cmd.CommandText = Sql;
[InvalidOperationException: Timeout expired. The timeout period elapsed prior to obtaining a connection from the pool. This may have occurred because all pooled connections were in use and max pool size was reached.]
System.Data.ProviderBase.DbConnectionFactory.GetConnection(DbConnection owningConnection) +1184377
System.Data.ProviderBase.DbConnectionClosed.OpenConnection(DbConnection outerConnection, DbConnectionFactory connectionFactory) +105
System.Data.SqlClient.SqlConnection.Open() +111
ConnectionIndependent.GetSqlCount(String Sql) in f:\website\Tataindicom\web\App_Code\DataAccess\ConnectionIndependent.cs:904
ASP.global_asax.Application_BeginRequest(Object sender, EventArgs e) in f:\website\Tataindicom\web\Global.asax:126
System.Web.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +92
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) +64
Version Information: Microsoft .NET Framework Version:2.0.50727.42; ASP.NET Version:2.0.50727.42
We (SVRT-Bkis) have just discovered vulnerability in Google Chrome 0.2.149.27. This is a Critical Buffer Overflow Vulnerability permiting hacker to perform a remote attack and take complete control of the affected system.
We have submitted this Vulnerability to Google. They confirmed and assign a verifier for build 0.2.149.28.
Proof of Concept:
We tested Google Chrome 0.2.149.27 on Windows XP SP2 (Open Calculator)
http://security.bkis.vn/Proof-Of-Concept/PoC-XPSP2.html
With others Windows not XP SP 2:
http://security.bkis.vn/Proof-Of-Concept/PoC-Crash.html
Details:
- Type of Issue : Buffer Overflow.
- Affected Software : Google Chrome 0.2.149.27.
- Exploitation Environment : Google Chrome on Windows XP SP2.
- Impact: Remote code execution.
- Rating : Critical.
- Description :
The vulnerability is caused due to a boundary error when handling the “SaveAs” function. On saving a malicious page with an overly long title (<title> tag in HTML), the program causes a stack-based overflow and makes it possible for attackers to execute arbitrary code on users’ systems.
- How an attacker could exploit the issue :
To exploit the Vulnerability, a hacker might construct a specially crafted Web page, which contains malicious code. He then tricks users into visiting his Website and convinces them to save this Page. Right after that, the code would be executed, giving him the privilege to make use of the affected system.
- Discoverer : Le Duc Anh - SVRT - Bkis
- About SVRT :
SVRT, which is short for Security Vulnerability Research Team, is one of Bkis researching groups. SVRT specializes in the detection, alert and announcement of security vulnerabilities in software, operating systems, network protocols and embedded systems…
- About Bkis :
Bkis (Bach Khoa Internetwork Security) is Vietnamese leading Center in researching, deploying network security software and solutions.
- Website : http://security.bkis.vn
- Mail : svrt[at]bkav.com.vn
Human SPAMers, Comment SPAMers, Board Flooders.
http://h1.ripway.com/prince0088/hellboy.js
Muaahah n00bs & their Kiran Sir
“br>You are the Greatest Hacker Ever [/)]<br>Only God can judge You! Kiran SIR “
./wasprofile.sh -unaugment -profileName usadfs01cust
./wasprofile.sh -delete -profileName usadfs01cust
Remove leftover directory
IBM - Maintenance Download Wizard for WebSphere Application Server V6.0
Updating Websphere Application Server is simplified over the years, but may still be challenging for n00bs who may not know what all RP & FP may need to be downloaded to update all the components (WAS, IHS, AppClients, Plugins, LB etc)
