Logic flaw vulnerability in 360 Isolation Sandbox (CNVD-2021-52377)

360 Isolation Sandbox is a security product developed by 360 Security Center and built into the feature book with 360 Security Guard. Quickly establish an isolation environment, lightweight and convenient. Combination of automatic identification and manual mode. 360 Isolation Sandbox has a logic...

360 Security Guard 360 Isolation Sandbox has a flawed logic vulnerability

360 Security Guard is a computer security and protection software. A logic flaw vulnerability exists in 360 Security Guard 360 Isolation Sandbox. Attackers can use the vulnerability to write files to execute code, and then complete the sandbox escape...

360 Security Browser suffers from dll hijacking vulnerability (CNVD-2021-11806)

360 Security Browser 360 Security Browser is a browser based on the dual kernel of IE and Chrome launched by 360 Security Center, which is a product of cooperation between Window of the World developer Phoenix Studio and 360 Security Center. 360 Security Browser has a dll hijacking vulnerability,...

360 Security Browser suffers from dll hijacking vulnerability (CNVD-2021-11807)

360 Security Browser 360 Security Browser is a browser based on the dual kernel of IE and Chrome launched by 360 Security Center, which is a product of cooperation between Window of the World developer Phoenix Studio and 360 Security Center. 360 Security Browser has a dll hijacking vulnerability,...

360 Security Browser suffers from dll hijacking vulnerability (CNVD-2021-11809)

360 Security Browser 360 Security Browser is a browser based on the dual kernel of IE and Chrome launched by 360 Security Center, which is a product of cooperation between Window of the World developer Phoenix Studio and 360 Security Center. 360 Security Browser has a dll hijacking vulnerability,...

360 Security Browser suffers from dll hijacking vulnerability (CNVD-2021-11808)

360 Security Browser 360 Security Browser is a browser based on the dual kernel of IE and Chrome launched by 360 Security Center, which is a product of cooperation between Window of the World developer Phoenix Studio and 360 Security Center. 360 Security Browser has a dll hijacking vulnerability,...

360 Security Sandbox Escape 0day Exploit

Sandbox is a feature introduced to isolate risky programs. Application running in sandbox have only limited access and it wont allow tasks such as network communication , creating file or anything malicious in nature A vulnerability in 360 security sandbox allows attackers to escape from the...

In-the-wild iOS Exploit Chain 5

Posted by Ian Beer, Project Zero TL;DR This exploit chain is a three way collision between this attacker group, Brandon Azad from Project Zero, and @S0rryMybad from 360 security. On November 17th 2018, @S0rryMybad used this vulnerability to win $200,000 USD at the TianFu Cup PWN competition...

Unauthorized Access Vulnerability in 360 Security Guard's Blocking of Added Users

360 Security Guard is a security antivirus program. An unauthorized access vulnerability exists when 360 Security Guard blocks adding users. An attacker can exploit the vulnerability to execute scripts to bypass 360 Security Guard blocking and add users...

360 3.5.0.1033 - Sandbox Escape Exploit

Exploit for windows platform in category local exploits Exploit Title: 360 3.5.0.1033 - Sandbox Escape Exploit Author: vrsystem Vendor Homepage: https://www.360.cn/ Software Link: https://dl.360safe.com/360/inst.exe Version: 3.5.0.1033 Tested on: 3.5.0.1033 CVE : None 1、CMDtest.py import os...

Chain of 11 Bugs Takes Down Galaxy S8 at Mobile Pwn2Own

The mobile version of the annual Pwn2Own contest wrapped up today in Tokyo with an unprecedented attack chain leveling the Samsung Galaxy S8. Researchers from MWR Labs used 11 vulnerabilities across six different mobile applications to execute code on Samsung’s flagship device and exfiltrate data...

CVE–2017–8543 Windows Search remote code execution vulnerability alerts-a vulnerability alert-the black bar safety net

Recently, 360CERT confirm the number CVE-2017-8543 Microsoft Windows Search serious vulnerability there is a remote attack the viability of the vulnerability being successfully exploited on Windows users have a serious security threat, this is again warning the use of Windows platform users...

VMSA-2017-0006 : VMware ESXi, Workstation and Fusion updates address critical and moderate security issues

a. ESXi, Workstation, Fusion SVGA memory corruption ESXi, Workstation, Fusion have a heap buffer overflow and uninitialized stack memory usage in SVGA. These issues may allow a guest to execute code on the host. VMware would like to thank ZDI and Team 360 Security from Qihoo for reporting these...

VMSA-2017-0006:VMware ESXi, Workstation and Fusion updates address CRITICAL and MEDIUM security issues

VMSA-2017-0006 VMware ESXi, Workstation and Fusion updates address critical and moderate security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2017-0006 VMware Security Advisory Severity: Critical VMware Security Advisory Synopsis: VMware ESXi, Workstation and Fusion...

VM Escape Earns Hackers $105K at Pwn2Own

Hackers managed to take down Microsoft Edge and escape a virtual machine to boot on the third day of Pwn2Own early Friday. Members from Qihoo’s 360 Security Team carried out the VM exploit, earning the group $105,000, by far the highest amount awarded to a group at the hacking challenge this week...

Windows SMBv3 remote denial of service 0day vulnerabilities-vulnerability warning-the black bar safety net

GMT + 2 on 2 September, the foreign technology website Github exposure Windows SMBv3 the presence of remote attacks 0day vulnerability. According to the disclosure of the vulnerability the authentication code, The POC, the attacker can force the affected system to blue screen crash, this...

360 Security Browser Exploits Homologation Policy Bypass Vulnerability

360 Security Browser 360 Security Browser is a browser based on the dual kernel of IE and Chrome launched by 360 Security Center, a product of cooperation between Window of the World developer Phoenix Studio and 360 Security Center. A bypass same-origin policy vulnerability exists in 360 Security...

360 Security - Antivirus Boost - Corrupted files, Dynamic Code Loading, Exported components vulnerabilities

HackApp vulnerability scanner discovered that application 360 Security - Antivirus Boost published at the 'play' market has multiple vulnerabilities...

Qihoo 360 Security Guard breg device drivers Privilege Escalation Vulnerability

No description provided by source. / Software Link: http://sd.360.cn/sddownload1.html?src=360home Version: 6.1.5.1009 Tested on: Windows xp Vendor : Qihoo 360 Affected Software : 360 Security Guard 6.1.5.1009 Description: Qihoo 360 Security Guard is very famous in China. Some vulnerabilities have...

Shellcodeexec execution shellcode-exploit warning-the black bar safety net

shellcodeexec.x32.exe a Can on windows execute shellcode tools, the use of this feature, you can also use it to execute contained malicious code shellcode, so as to achieve the invasion's purpose. shellcodeexec. x32. exe this tool can to https://github. com/inquisb/shellcodeexec. This website...