Comodo, CAs Issue Forbidden Certificates

Certificate authority Comodo admits it incorrectly issued eight certificates that include forbidden internal server names or reserved IP addresses. In 2012, the Certificate Authority/Browser Forum banned the use of such designations for certs issued after Nov. 1, 2015. The decision was meant to c...

MS15-0 8 3: Windows SMB memory corruption vulnerability analysis-vulnerability warning-the black bar safety net

2 0 1 5 年 8 月 1 1, Microsoft has released1 4 a security patch, which includes an SMB Server patch. In this article I will explain how I trigger the vulnerability. Microsoft Security Bulletin MS15-0 8 3 In all of the repair patch, I“vulnerability in Server Message Block could allow remote code...

ThinkSAAS SQL注入漏洞打包6-10

简要描述： 详细说明： 上个注入大礼包，终于走了一个大厂商！ 看来还是打包来的划算，最后一个注入大礼包了。 这个漏洞完了，回给出修复方案，求给力！ 第一处SQL注入 /app/group/action/add.php // 执行发布帖子 case "do" : if $POST 'token' != $SESSION 'token' tsNotice '非法操作！' ; $authcode = strtolower $POST 'authcode' ; if $TSSITE 'base' 'isauthcode' if $authcode != $SESSION 'verify'...

Vulnerabilities in SNMP Message Processing - Cisco Systems

Cisco Internetwork Operating System IOS Software release trains 12.0S, 12.1E, 12.2, 12.2S, 12.3, 12.3B and 12.3T may contain a vulnerability in processing SNMP requests which, if exploited, could cause the device to reload. The vulnerability is only present in certain IOS releases on Cisco router...