Jump to content
SAU Community

Recommended Posts

Another one here for a whole lot of characters appearing when clicking on an image.

Also noticed when i first logged in today this site wanted to install an Active X control, some Microsoft Data something or other. I didnt install it as i didnt see a notice to say that it was okay to run on the bulletin board.

Some of the fonts are showing up larger than they usually do aswell

Are these related?

I still can't upload images into private messages.

I browse, double click and the image name appears but when I ckick on add attachment it goes to a blank page rather than show the attachment in the pm.

Anyone else have this problem or have I picked up a virus or something?

i stil cant upload, and now i cant even login to msn.. that dsb.exe must have infected my pc, and now i feel like taking SAU to court.. :\

lol, if you read the conditions when you join the site there is a bit in there about SAU not being liable for such actions as you should have adequate protection.

lol, if you read the conditions when you join the site there is a bit in there about SAU not being liable for such actions as you should have adequate protection.

im just mucking around, relax.. but i suggest u get someone to fix this crap.. the exploit is still there..

We realise there is an issue.

Its a lot harder to fix something than you realise because there are limited people with access.

And the people with access are busy, they have thier own personal lives as SAU Admins/Mods are unpaid...

If your own PC is correctly protected then you wont have an issue.

Please be patient. Constantly posting about the fact it isnt fixed, simply is not going to help the issue especially when your not even a donor :D

For the exploit to work it *needs* Microsoft XML Core Services to be installed. Microsoft XML Core Services are not installed by default on Windows XP, but there seems to be a lot of packages using it, Visual Studio appears to be one common one. You can check in the Add or Remove Programs applet if you have it installed.

> The exploit works in both IE6 and IE7, which makes sense since it's exploiting a vulnerability in an ActiveX object, not in the browser itself. When executed the exploit creates an MSXML 4.0 ActiveX object (88d969c5-f192-11d4-a65f-0040963251e5). It then uses multiple setRequestHeader() method calls to execute shellcode which is included with the exploit. Once executed the shellcode (of course) first downloads the first stage downloader. At the moment it's a file called tester.dat:

16ac9982d177a47a20c4717183493e95 tester.dat

This downloader then downloads subsequent files (yet to be analysed). It looks like some AV vendors are beggining to detect the exploit. At this moment it is being detected by McAfee as Exploit-XMLCoreSrvcs and Symantec as Bloodhound.Exploit.96*. Microsoft also detects it as Exploit:HTML/Xmlreq.A. The best protection, is to prevent the XMLHTTP 4.0 ActiveX Control from running in Internet Explorer, as stated in Microsoft's advisory: http://www.microsoft.com/technet/security/...ory/927892.mspx ."

* http://www.symantec.com/security_response/...-110611-5730-99

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now


  • Similar Content

  • Latest Posts

    • Ok i will get those 310mm. I found one but on a different site. This is the description on those...is it ok? Technical parameters: - Axle: front. - Disc type: ventilated. - Number of holes: 5. - Disc diameter: 310mm. - Total height with center: 54mm. - Thickness (new/min.): 30/28mm. - Designed for brake calipers manufacturer: Sumitomo.
    • You Gregged a whole racetrack!?
    • Look for broken wire or bad connector at the motor. Might not be it, but is worth starting there, as it is easy.
    • Hi everyone, I’m having an issue with my R32 GT-R. Sometimes, when the car goes over a bump or experiences some vibration, the 4WD warning light comes on the dashboard. When I check the code from the control unit in the trunk, it shows Code 19 – ETS Motor. However, everything seems to be working fine — if I turn off the engine and restart the car, the light goes away and everything functions normally. Has anyone experienced this before? Where should I start troubleshooting this issue? Thanks in advance!
    • I'm back from the dyno - again! I went looking for someone who knew LS's and had a roller dyno, to see how it shaped up compared to everything else and confirm the powerband really is peaking where Mr Mamo says it should. TLDR: The dyno result I got this time definitely had the shape of how it feels on the road and finally 'makes sense'. Also we had a bit more time to play with timing on the dyno, it turns out the common practice in LS is to lower the timing around peak torque and restore it to max after. So given a car was on the dyno and mostly dialled in already, it was time for tweaking. Luis at APS is definitely knowledgable when it came to this and had overlays ready to go and was happy to share. If you map out your cylinder airmass you start seeing graphs that look a LOT like the engine's torque curve. The good thing also is if you map out your timing curve when you're avoiding knock... this curve very much looks like the inverse of the airmass curve. The result? Well it's another 10.7kw/14hp kw from where I drove it in at. Pretty much everywhere, too. As to how much this car actually makes in Hub Dyno numbers, American Dyno numbers, or Mainline dyno numbers, I say I don't know and it's gone up ~25kw since I started tinkering lol. It IS interesting how the shorter ratio gears I have aren't scaled right on this dyno - 6840RPM is 199KMH, not 175KMH. I have also seen other printouts here with cars with less mods at much higher "kmh" for their RPM due Commodores having 3.45's or longer (!) rear diff ratios maxing out 4th gear which is the 1:1 gear on the T56. Does this matter? No, not really. The real answer is go to the strip and see what it traps, but: I guess I should have gone last Sunday...
×
×
  • Create New...