Sea Lotus APT groups use CVE-2017-8570 vulnerability of the new sample and Association analysis-vulnerability warning-the black bar safety net

Sea Lotus（OceanLotus）APT gang is a highly organized, professional foreign national hacker group, the oldest by 360 days eye Labs discovered and disclosed. The organization since at least 2012 and 4 January will be for the Chinese government, research institutes, Maritime institutions, Maritime...

About Apache Struts2（S2-045）vulnerability briefings-vulnerability warning-the black bar safety net

Recently, the national information security vulnerabilities library CNNVD received on the Apache Struts2 （S2-045 remote code execution vulnerability CNNVD-201703-152 the case of the message send. Because the vulnerability affects a wide range of hazard level high, the national information securit...

Python urllib HTTP header injection vulnerability-vulnerability warning-the black bar safety net

The Python urllib library in Python 2 for urllib2 in Python 3 to urllib is a HTTP Protocol the following Protocol flow injection vulnerabilities. If an attacker can control the Python code to access an arbitrary URL, or allow Python code to access a malicious web servr, and that this vulnerabilit...

Alert Windows RDP remote vulnerability POC propagation-vulnerability warning-the black bar safety net

! 0x00 description 2019 5 August 31, 360 is detected on github someone posted a lead to a remote denial of Service POC codehttps://github.com/n1xbyte/CVE-2019-0708and for windows server 2008 R2 x64 demo video, the proven POC code real and effective. An attacker can use to spread the code of the...

Use CouchDB to unauthorized access vulnerability to execute arbitrary system commands-bug warning-the black bar safety net

5 on 1 6, Ali cloud shield defense against the team from external sources informed that the CouchDB database exists for unauthorized access vulnerabilities in the configuration is incorrect. After the test, the cloud shield team was the first to discover the use of the unauthorized access...

Redis unauthorized access with SSH key file use analysis: ZoomEye the latest global exclusive data V2-vulnerability warning-the black bar safety net

Updates ! 2. Vulnerability overview Redis by default, it will bind on 0.0.0.0:6 3 7 9, This will be the Redis service exposed to the public Internet, if there is no open authentication, can cause any user can access the target server is not authorized to access Redis and read the Redis data...

Windows Remote Desktop Services remote command execution vulnerability, CVE-2019-1181/1182-a vulnerability warning-the black bar safety net

One, Foreword GMT + 8 on 14 October, Microsoft released a set for the Remote Desktop service repair program, which includes two critical remote code execution（RCE）vulnerability CVE-2019-1181 and CVE-2019-1182。 With the prior repair of the“BlueKeep”vulnerability, CVE-2019-0708）the same. This also...

Next from the printer coming out will be?-- The theory of the UPnP using the status quo and risk-vulnerability warning-the black bar safety net

Earlier this year, Chromecast streaming dongle, Google Home devices and smart TV users are forced to harvest a strip from the youtube PewDiePie channel promotion information. This hijacking is said by the tube top traffic UP the main are a fan of the battle for the thrown. Reported that hackers...

QQ browser privacy disclosure report-vulnerability warning-the black bar safety net

0x00 description QQ browser is Tencent development of a web browser, for Android, Windows, Mac and iOS and other platforms. Compared to the built-in browser, QQ browser provides richer functionality, for example, increase the tag window, and integrating the chat platform, etc. In the report a...

WebLogic deserialization 0day vulnerability CVE-2019-2725 patch to bypass）early warning-vulnerability warning-the black bar safety net

2019 06 May 15, 360CERT monitored in the field of Oracle Weblogic remote deserialize command execution vulnerability, the vulnerability to bypass the latest Weblogic patch（CVE-2019-2725, the attacker can send a carefully constructed malicious HTTP request, unauthorized remote execution of command...

MAC address and IP address binding policy of hack-vulnerability warning-the black bar safety net

1 Introduction On the“IP address theft”solutions, the vast majority are taking MAC and IP address binding policy, this practice is very dangerous, this article will this problem be explored. Here need to declare that this article is in the pairs of MAC and IP address binding policy security...

HackerOne two-factor authentication and reporting those to the blacklist bypass vulnerability（$10,000）-bug warning-the black bar safety net

Hello everyone, today I want to share with you is a HackerOne-related vulnerabilities, using the vulnerability, I can bypass the HackerOne vulnerability presented when two-factor authentication mechanisms 2FA and the bounty project, A Bug Bounty Program for reporting those to the blacklist...

The [vulnerability analysis] MS17-010: an in-depth analysis of the“eternal blue”vulnerability-vulnerability warning-the black bar safety net

Background From EternalBlue this Exploit is the shadow broker published on the Internet, it has become a“star”. In the past the middle of May, this Exploit is more malicious software use. Including raging WannaCryp0t, no files of the ransomware UIWIX and SMB worm EternalRocks it. EternalBluein...

CNNVD about Microsoft more security vulnerability Advisory-vulnerability warning-the black bar safety net

Recently, the official Microsoft has released multiple security vulnerabilities in the Bulletin, including Microsoft Internet Explorer security vulnerability, CNNVD-201811-349, CVE-2018-8570, the Microsoft Word security vulnerabilities CNNVD-201811-387, CVE-2018-8539）、（CNNVD-201811-388,...

A large number of Bluetooth devices and systems will be protected by encryption Vulnerability CVE-2018-5383 impact-vulnerability warning-the black bar safety net

Recently, a security research expert in a certain Bluetooth device is found in a high-risk encryption Vulnerability CVE-2018-5383, and an unauthenticated attacker in physical proximity to the target device, this vulnerability will allow them to intercept, monitor or tamper with equipment of the...

. NET advanced code audit of the first six classes DataContractSerializer deserialization vulnerability-vulnerability warning-the black bar safety net

DataContractSerializer class is used for serialization and de-serialization in Windows Communication Foundation WCF message to send the data for the CLR data type is serialized into an XML stream, which is located in the namespace System. Runtime. Serialization, and inherits from the System...

PHP arbitrary file upload Vulnerability, CVE-2 0 1 5-2 3 4 8 analysis and use-vulnerability and early warning-the black bar safety net

Today, security researchers released a medium-risk vulnerabilities--PHP arbitrary file upload Vulnerability, CVE-2 0 1 5-2 3 4 8 in. Typically, the php developer will be the file name suffix, file typeContent-Type, Mime type, file size, etc. to be checked to limit the malicious php script is...

The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net

This article is for me at Bluehat Shanghai 2019 presentation of an extended summary. In this article, I will summarize the 2010 to 2018 years of Office-related 0day/1day vulnerability. I will be for each type of vulnerability do once carded, and for each vulnerability related to the analysis of t...

How BurpSuite detection of Blind XSS vulnerabilities-vulnerability warning-the black bar safety net

! Last weekend, I participated in a French hack of the Year competition“Nuit du Hack 2017”the qualification heats, at the time I managed to get the game in all the Web security challenges, and one person alone had a team in the Web challenges of all the scores, and I use the tool only BurpSuite...

Ruby2. X remote code execute vulnerability analysis of the deserialization gadget chain-vulnerability and early warning-the black bar safety net

Description This article will detailed introduction to ruby any deserialization use, at the same time also released the first General-purpose gadget chain, to achieve the Ruby 2. x arbitrary command execution. In the next article, I will explain in detail the deserialization of the problem and Th...

To bypass nftables/PacketFilter firewall filtering rules, transmit the ICMP/ICMPv6 packet vulnerability details the on-vulnerability warning-the black bar safety net

Background knowledge introduction Currently the firewall has a total of four categories: Packet filtering firewall: packet filtering firewall does not check data area, a packet filtering firewall does not establish a connection State table before and after the packet-independent, application-laye...

Linux kernel ipv4/udp. c remote arbitrary code execution(CVE-2016-10229)-vulnerability warning-the black bar safety net

! Vulnerability description The Linux kernel is the United States, the Linux Foundation released theoperating systemLinux the kernel. Linux kernel 4.5 the previous version of the udp. c file there is a security vulnerability, the Linux kernel udp. c allows a remote attacker via UDP traffic to...

Discuz! X2. 5 latest GetShell0day detailed use-vulnerability warning-the black bar safety net

I heard that Discuz! This time and out of vulnerability, this was a GetShell vulnerabilities. This exploit is relatively new, it should be a lot of stations haven't updated it. Affects versions: 2 0 1 2 0 4 0 7, beta, rc Discuz! X2. 5 Release 2 0 1 2 0 4 0 7 edition in pregreplace using the e...

WordPress 5.0.0 Remote Code Execution analytical thinking-vulnerability warning-the black bar safety net

2 on the 20th, and RIPS the team in the official website discloses a WordPress 5.0.0 Remote Code Execution, CVE number CVE-2019-6977, the article mainly mentioned in the author permissions to the account, you can modify the Post Meta variable coverage, directory traversal write the file, the...

The latest exposure of the RTF vulnerability beside the use of research to explore the topic guide-vulnerability warning-the black bar safety net

0×1 details In recent days, Tencent computer housekeeper to capture a new office document virus samples, 经阐发为9月12号刚被微软修复的.NET Framework vulnerability flaws bug（CVE-2017-8759 the fields of intrusion samples. The vulnerability flaws of the bug with the previous rtf vulnerabilities flaws...

A newline character causes the Oscar vulnerability 0day(CVE-2017-8759)reproduction-latest Office the highest level of threat attack warning-vulnerability warning-the black bar safety net

Krzysztof, the 360 group focus of the Security Business Unit elucidating the team invented a new type of Office document high-end intimidating onslaught, the 进击应用了9月12日补钉刚修复的.NET Framework flaws vulnerability bug, the flaw exploits a bug in the field is applied for 0day condition, the user closed...

Based on jemalloc Android exploit skills----CENSUS-bug warning-the black bar safety net

Background description jemalloc-related research argp and huku in 2012 in Phrack published on: jemalloc memory allocator a separate use of themade-based on FreeBSD libc POC. argp and huku in 2012 BlackHat published: in Firefo play bad jemalloc metadata. argp in 2015 INFILTRATE on jemalloc exploit...

SHA could not escape my hands: clever use Cain crack MYSQL database password-bug warning-the black bar safety net

MYSQL database user password with the database user password the same, in the application of the system code are based on the plaintext appears in the access file read access can be directly from the database connection file is read, for example, asp code in conn. asp database connection file, in...

“cerber”blackmailer for CVE-2016-7255 exploit analysis-exploit warning-the black bar safety net

0x1 Foreword 360 Internet Security Center recently captured a“ceber”blackmailer Trojan variants, the variants with other“ceber”blackmailer Trojan variants in the code The execution flow and not too big difference. Only it is worth noting that the Trojan exploit CVE-2016-7255 privilege elevation...

angr:python-based binary analysis framework-vulnerability warning-the black bar safety net

Foreword Take a look at this Integrated Framework in binary code analysis of the CTF, to solve what the problem it, here is the git are listed in the solution to the CTF game: ! ! Wherein, HackCon 2016 - angry-reverser takes 31 min, SecurityFest 2016 – it takes 20s, Defcamp CTF Qualification...

Router vulnerability reproduction: from the principle to the first verification-vulnerability and early warning-the black bar safety net

The IOT vulnerability to reproduction and the traditional system vulnerabilities to reproduce the different point is that the physical network vulnerability depends on the hardware, almost every vulnerability all have to buy a new piece of hardware to reproduce, which is different from the...

Huawei Wimax router is proof there are multiple vulnerabilities-vulnerability warning-the black bar safety net

Vulnerability overview Huawei BM626e is a very rigorous Wimax router/Ap device, which may be the Internet provides a Wimax network. The following test is in the latest version of the firmwareV100R001CIVC24B010 Note: the firmware in other Wimax device also used to, according to Huawei official...

Python format string vulnerabilities in Django, for example-the vulnerability of early warning-the black bar safety net

! Author: phithon In the C language, there is a class of particularly interesting vulnerability, format string vulnerability. The light then destroy the memory, read and write any address of the content, binary content, I will not say, say to also do not understand, share the link...

CVE–2017–8543 Windows Search remote code execution vulnerability alerts-a vulnerability alert-the black bar safety net

Recently, 360CERT confirm the number CVE-2017-8543 Microsoft Windows Search serious vulnerability there is a remote attack the viability of the vulnerability being successfully exploited on Windows users have a serious security threat, this is again warning the use of Windows platform users...

Microsoft CTF Protocol vulnerability alerts-a vulnerability alert-the black bar safety net

2019 Year 8 on 13 May, google security researcher Tavis Ormandy published a blog disclosing the windows operating system in the CTF agreement is the presence of a multi-year vulnerability. 0x01 vulnerability details google security researcher Tavis Ormandy in Windows text services...

Microsoft emergency release CVE-2019-0708 vulnerability fixes-bug warning-the black bar safety net

2019 5 on 14 September, Microsoft is the emergency release for the Remote Desktop service Remote Desktop Service, RDP, previously known as Terminal Services remote code execution vulnerability CVE-2019-0708 fix, the vulnerability affects some older versions of Windows system such as Windows XP,...

VxWorks Fuzzing: VxWorks industrial real-time operating system vulnerability mining debugging with the use of secret-vulnerability warning-the black bar safety net

VxWorks is the world's most widely used method in the embedded system deployed in real timeoperating system, is composed of the United States WindRiver company referred to Wind River Corporation, i.e., the WRS company in 1 9 8 3 years in design and development. Their market ranges across all safe...

The AWS metadata service SSRF vulnerability analysis-vulnerability warning-the black bar safety net

One, Foreword Recently I was busy with a small project, to study how the Docker container executing untrusted Python code. According to the project requirements, I need to test more online code execution engine, research them on the various attacks of the reaction. In the research process, I foun...

Back door the back door from webshell to the broiler-vulnerability warning-the black bar safety net

The author has been stressing one thing, in the network attack and Defense the most important thing is thinking. This article was inspired by Ann day 3 6 5 team of a manuscript in the manuscript mentioned in a AspxSpy Asp. net type of Backdoor software in the security community in recent the ever...

asp,PHP and. net forge HTTP-REFERER method and forgery preventing REFERER-bug warning-the black bar safety net

HTTP-REFERER this variable has been increasingly unreliable, and completely is what can be forged out of the stuff. The following is the forged method: ASP/Visual Basic code dim http set http=server. createobject"MSXML2. XMLHTTP" '//MSXML2. serverXMLHTTP also can Http. open "GET",url,false Http...

Samsung Android 5 device abuse wifiCredService lead to remote code execution-vulnerability warning-the black bar safety net

This article detailed analysis of the most recent in Google's vulnerability Bounty program disclosed in the Samsung Android5 devices vulnerability0, the vulnerability by Google's Project Zero team as well as Quarkslab mining. As far as we know, the vulnerability exists in all Samsung powered by...

Web editor vulnerability manual comprehensive Edition-vulnerability warning-the black bar safety net

FCKeditor FCKeditor editor page/view Editor Version/view the file upload path FCKeditor editor page FCKeditor/samples/default.html View Editor Version FCKeditor/whatsnew.html View the file upload path fckeditor/editor/filemanager/browser/default/connectors/asp/connector. asp?...

Began openly selling a...the United States company is selling weapons of the BlueKeep the exploit-vulnerability warning-the black bar safety net

By 2019 05 on 15 August, Microsoft released 5 December patch update list, in which the presence of a marked to severe RDP Remote Desktop Services remote code execution vulnerability, an attacker can exploit this vulnerability remotely without user authentication by sending the special structure o...

Win10Pcap-Exploit: the use of Win10Pcap kernel driver vulnerability to achieve local mention right-vulnerability warning-the black bar safety net

A few days ago I was in win10pcap drive found in a coin can be local to mention the right vulnerability, when it had been reported to the official, now you can update to get a fix. http://www.win10pcap.org/download/ At the request of many friends request, then the sample exploit posted for everyo...

discuz! X1. 0 – X1. 5 Blind SQL injection exploit & Get Shell-vulnerability warning-the black bar safety net

Exploit Title: discuz! X1. 0 - X1. 5 Blind SQL injection exploit &Get Shell Date: 06-04-2012 Author: Hacker-Fire Category:: webapps Google dork: Powered by Discuz Tested on: Windows 7 P0c : ? Php printr ' + ------------------------------------------------- -------------------------- + Discuz! 1-1...

Ethernet place more than one contract there is unlimited additional high-risk vulnerabilities-vulnerability warning-the black bar safety net

Recently, the Internet broke the AMR contract in the presence of high-risk security risk trading, through the study found that the AMR contract in the presence of batch transfer overflow vulnerability: when the contract to achieve the batch transfer function, it is easy to in the calculation of t...

Energy-warning! Be wary EnMiner mining kill-vulnerability warning-the black bar safety net

Recently, sangfor found a high strength of the virus against the behavior of the new mining virus, its viral mechanisms and conventional mining large difference, once infected, the cleanup is extremely difficult. Currently the virus in the outbreak early, sangfor has this virus named EnMiner mini...

VirtualBox virtual machine latest escape vulnerability E1000 0 day detailed analysis of the on-vulnerability warning-the black bar safety net

Recently, Russian security researcher Sergey Zelenyuk released for VirtualBox 5.2. 20 early versions of the 0 day vulnerabilities detailed information, these versions can allow an attacker to escape the virtual machine and executed on the host RING 3-layer code. Then, the attacker can take...

Analysis antivirus BitDefender of an integer overflow vulnerability, the first part-the vulnerability warning-the black bar safety net

In software vulnerabilities“Pantheon”, the security software vulnerability is considered other than software vulnerabilities in more serious. We rely on security software to defend against attackers, so our defensive system in the vulnerability only allows an attacker to cause harm, but also will...

Note DedeCMS a hash length of the expanding attacks caused by unauthorized vulnerability-vulnerability warning-the black bar safety net

Vulnerability impact: Dedecmsweaving dreams CMS V5. 7. 72 the official version of the 20180109 latest version The vulnerability principle DedeCMS user authentication by the authentication Cookie in the DedeUserID and DedeUserIDckMd5 carried out, as follows: ! Where$cfgcookieencode is installed wh...