CVE-2018-4277: a“pie”triggered spoofing-vulnerability warning-the black bar safety net

Researchers looking for the browser front-end security issues found in Chrome, Safari, Firefox and other browsers there is a security vulnerability. This article describes Apple products Alphabet d-shaped problems caused by domain spoofing problem. U+A771 The researchers found that Apple products...

Intel official for 5 on 15, the aeration out of the CPU side channel vulnerabilities“ZombieLoad”detailed technical analysis on-the vulnerability warning-the black bar safety net

Background understanding 5 March 15, the media exposed, security researchers at a month before the Intel chip found in the one called“ZombieLoad”the new vulnerability, this vulnerability may allow an attacker to obtain the current processor is processing the sensitive data. An attacker can exploi...

Jackson-Databind framework json deserialization code execution vulnerability analysis-vulnerability warning-the black bar safety net

2017/04/11, ayound reported a Jackson Databind framework json deserialization vulnerability, an attacker exploit the vulnerability in the server on the host to execute arbitrary code or system commands, obtain the web server control. Affected versions: The jackson databind 2.7.10 and 2. 8. 9 The...

DEDECMS v5. 5 Final select_soft_post.php vulnerability-vulnerability warning-the black bar safety net

Author:st0p Today only from Wolves Security Team to see toby57 large cattle released"DEDECMS v5. 5 GBK Final one. vulnerability"this article,the original address:http://bbs.wolvez.org/topic/125/ Your own local testing a bit,covering the SESSION this little chicken threat is true,because the reque...

See how do I find Microsoft Outlook for Android mobile application XSS vulnerability-vulnerability warning-the black bar safety net

! Share today It's about the Outlook for Andriod storage typeXSSvulnerability, the author through a friend sent technology mail by chance discovered the vulnerability, after months of reproducing the structure, eventually Microsoft acknowledged the vulnerability, CVE-2019-1105-in. Vulnerability...

OpenSSH is now in the risk of vulnerabilities can cause remote code execution-vulnerability warning-the black bar safety net

Vulnerability number CVE-2016-10009 Vulnerability level In the risk Vulnerability OpenSSH 7.3 and the following version Vulnerability description The vulnerability appears the ssh-agent, this process by default does not start, only in a multi-host Free the password the login will only be used to...

PHP character encoding bypass vulnerability summary-vulnerability warning-the black bar safety net

Transferred from: neo Original address: http://www.cnblogs.com/Safe3/archive/2008/08/22/1274095.html In fact this stuff is one of the few hack has long been known, but not shared published. Some people are reluctant to share and prefer to rot in the ground, in addition some is used to profit. The...

Smart TV and then exposed vulnerabilities--Supra Smart Cloud TV vulnerability can cause the device to be hijacking-vulnerability warning-the black bar safety net

An attacker can take advantage of a smart TV vulnerability, the attack connected to the home router to get remote access. Supra smart TV in a not patched the vulnerability so that the same Wi-Fi network, the attacker can hijack the TV device, play their own content, such as a fake emergency...

WebLogic Server exposure to high-risk remote command execution 0 day vulnerability-a vulnerability warning-the black bar safety net

Recently, Ali cloud security team monitored, by the National information security vulnerabilities sharing platform CNVD）included in the Oracle WebLogic wls9-async deserialization remote command execution vulnerability CNVD-C-2019-48814 be attacker, the unauthorized remote execution command. The...

See how I dug into the Twitter XSS vulnerabilities and bypass the CSP-vulnerability warning-the black bar safety net

A few months ago, I dug up a TwitterXSSvulnerability, while bypassing a site's content security policy CSP successfully executed the JavaScript code. In the present article will be mainly to share theXSSloophole mining ideas and specific details while in the article that comes with the PoC demo...

CVE-2019-8603: Safari sandbox escape&LPE in-depth analysis-vulnerability warning-the black bar safety net

In this article, we will be on the vulnerability, CVE-2019-8603 analysis. In short, this is a present in the Dock and com. apple. uninstalld services in a heap out of bounds read vulnerability, the vulnerability will cause the attacker to call CFRelease and in macOS implemented on a Safari sandbo...

CVE-2017-7269-IIS6 remote code execution vulnerability-reproduce-bug warning-the black bar safety net

Vulnerability description: Windows Server 2003R2 version IIS6. 0 the WebDAV service in the ScStoragePathFromUrl a function of the presence buffer overflow vulnerability, the remote attacker through to the“If: http://”at the beginning of a long header PROPFIND request, execute arbitrary code. The...

Domain penetration--Dump Clear-Text Password after KB2871997 installed-vulnerability warning-the black bar safety net

In penetration testing, the penetration tester will typically use mimikatz from the LSA of the memory to export system's plaintext password, while experienced administrators will often choose to install the patch kb2871997 to limit this behavior. This one relates to what are the interesting...

struts2 and double 叒 叕 a high-risk vulnerability S2-048-the vulnerability warning-the black bar safety net

Vulnerability ID: CVE-2017-9791 Vulnerability author: icez ic3zqq.com Affected version: Struts 2.3. x Vulnerability rating: high risk Vulnerability Brief Description: When the Struts 2 in Struts 1 Plug-in is enabled, an attacker through the use of malicious field values may cause the RCE. These...

Kernel pool overflow exploit combat of Windows 10-bug warning-the black bar safety net

One, Foreword This is the kernel pool overflow exploit combat of Windows 7 throughout the sequel, we will be in the Windows 10 system to achieve the same exploits, it will be more challenging because of Microsoft ever since Windows 8 has taken a lot for the kernel pool attacks defenses. This...

For NXP I. MX microprocessor HAB vulnerability analysis-vulnerability warning-the black bar safety net

One, Foreword NXP（NXP）semiconductor production company i. The MX Series application processor of the Secure Boot features in the presence of two vulnerabilities, two vulnerabilities by Quarkslab the two researchers Guillaume Delugré and Kévin Szkudłapski found this article on the two vulnerabilit...

ThinkPHP framework of the pass to kill all versions of a SQL injection vulnerability detailed analysis and testing methods-vulnerability warning-the black bar safety net

The following is an excerpt from thinkphp official of an announcement, the official posted directly out of these things is not responsible for the conduct, keep up with the times apache disclosed Struts2 code to perform the same behavior, it will cause a lot of users are black. Suggest similar...

The use of PMK Hashes for the WPA/WPA2 high-speed hack-vulnerability warning-the black bar safety net

This article relates to the Hash key based on the Cowpatty under the genpmk tool to make, this is the ZerOnesecurityteam WisecurityGROUP BY with Aircrack-ng airolib-ng and related tools of convenience, versatility and repeated the comparison after the final decision. For the convenience of everyo...

php escapeshellcmd multibyte encoding vulnerability analysis and extension-a vulnerability warning-the black bar safety net

漏洞 公告 在 http://www.sektioneins.de/advisories/SE-2008-03.txt PHP 5 = 5.2.5 PHP 4 = 4.4.8 Some allow as GBK, EUC-KR, SJIS, etc. wide byte character set systems may be affected by this impact, the impact is still very large, the domestic virtual host should be the pass to kill, in testing this...

In-depth analysis of exception-based iOS exploit technology-vulnerability warning-the black bar safety net

This article will provide the reader a detailed description numbered CVE-2017-2370 machvoucherextractattrrecipetrap mach trap heap overflow discovery and use of the process. Here not only describes this vulnerability itself, but also to explain a loophole in the use of technology development...

Linux application permissions incorrectly can provide the right series vulnerability analysis-vulnerability warning-the black bar safety net

Foreword linux to powerful file management system, in actual use, although able to work provide great convenience, but if the permissions improper handling, may cause a certain security risk, such as in the operation of the file, change some folder permissions, when the use of some can be freely...

For libssh2 integer overflow vulnerability (CVE-2019-17498)analysis-vulnerability warning-the black bar safety net

0x01 vulnerability mining In 2019 3 December 18, Canonical Ltd. Chris Coulson discloses libssh2 nine of vulnerability, CVE-2019-3855 to CVE-2019-3863-in. These vulnerabilities have been in the libssh2 v1. 8. 1 repair. At the time, my colleague Pavel Avgustinov note that fix vulnerabilities report...

Dell Computer SupportAssist serious defects may lead to client-RCE-vulnerability warning-the black bar safety net

! Foreword You use a computer? Who made? Have you ever wanted your computer comes with what stuff? When it comes to the various remote code execution vulnerability, we might think ofoperating systemin such vulnerability, another attack vector is the”on my computer what are some third-party softwa...

Linux 3 a serious vulnerability systemd, may lead to data breaches-vulnerability warning-the black bar safety net

! Recently, security researchers announced a Linux system systemd in three serious vulnerabilities, namely CVE-2018-16864, CVE-2018-16865, and CVE-2018-16866。 Attackers exploiting these vulnerabilities may obtain a target machine's root access, and even may lead to information disclosure. Systemd...

A large number of third-party Android ROM is not configured correctly resulting in information leakage warning-vulnerability warning-the black bar safety net

11 November 22, Magisk author topjohnwu published articles that mentioned him in the study of Fate/Grand Order mobile game root detection mechanism when found present in millions of android devices on the vulnerability, exploit the vulnerability will leak on the system to process information. In...

Using the Slack app to steal Slack user to download file-vulnerability warning-the black bar safety net

! In this paper, Tenable security team researcher David Wells share the Windows version of Slack Terminal application of a vulnerability, through the Slack download function use, you can control the Slack of the victims of the downloaded file is stored is provided, indirect the secret to steal th...

Oracle WebLogic remote command execution vulnerability alerts-a vulnerability alert-the black bar safety net

2019 04 on 17 May, the National information security vulnerabilities sharing platform CNVD official released a security Bulletin called Oracle WebLogic wls9-async components deserialization of a remote command execution vulnerability, an attacker can use this vulnerability, unauthorized remote...

WordPress 5.1 CSRF lead to remote command execution vulnerability alerts-a vulnerability alert-the black bar safety net

Report number: B6-2019-031301 Report source: 360-CERT The authors of the report: a 360-CERT Update date: 2019-03-13 0x00 vulnerability background 2019 03 May 13, 360 CERT monitoring to RIPSTECH released WordPress 5.1 CSRF vulnerability leads to remote code execution the contents of the details...

By sending YY information access others account and login-bug warning-the black bar safety net

First send a YY information to the users, this is a test of the no-induced ! Then open ! a cookie to the ! With veterans try. ! Log in. Repair solutions: Filter...

The use of SMS hijacking of Facebook accounts-vulnerability warning-the black bar safety net

This article will demonstrate a simple bug. Exploit this vulnerability without user interaction, you can get any Facebook account full control. Please see below. Facebook allows you to be your own phone number and the account number associated with it. This allows you via SMS to receive update...

GeForce Experience OS command injection-vulnerability warning-the black bar safety net

0x01 vulnerability overview In this article, I will share how I found to be the use of NVIDIA GeForce Experience GFEto cause remote code execution vulnerability, the version number is less than 3. 19 of the GFE are the presence of the vulnerability. This vulnerability is assigned the ID:...

OWA and Offic365 two-factor authentication bypass-vulnerability warning-the black bar safety net

Foreword Full disclosure: the BLACK HILLS information security very much in favor of responsible disclosure of vulnerabilities. 2 0 1 6 9 2 8, I to Microsoft reported this vulnerability, may have been to this article publishing 2016.11.2, Microsoft for this vulnerability is always without any...

Successfully acquired WinRAR 19-year-old code-execution vulnerability-a vulnerability warning-the black bar safety net

In this paper, we describes how to use the WinAFL fuzz testing tool Find WinRAR in the logic error, and use it to completely control the volatile trap host story. The vulnerability only by extracting a carefully constructed archive file can be successfully exploited, so that more than 5 billion...

IP. Board<=3.4.7 SQL injection vulnerability 0day）POC-vulnerability warning-the black bar safety net

Recently IP. Board = 3.4. 7 broke critical 0day vulnerability. IPB Forum is called Invision Power Board（abbreviated IPB or IP. Board, is the world's most famous Forum app by PHP+MySQL architecture. The vulnerability causes., interface/ipsconnect/ipsconnect. php page does not properly handle the i...

ghostscript sandbox bypass remote command execution vulnerability alerts-a vulnerability alert-the black bar safety net

! 0x00 vulnerability background 11 on the 21st, Semmle team of security researchers Man Yue Mo by semmle website, once again that ghostscript security sandbox can be bypassed by constructing a malicious PDF content that can cause remote command execution. ghostscript is widely used, ImageMagick,...

Spring3. 2. 1 1 with Quartz2. 2. 1 integrated memory leaks problem solving-vulnerability warning-the black bar safety net

Quartz is a timer task scheduling open-source framework, use up more convenient. And Spring's support package for Quartz with integrated. But the author in the web application using the process but encountered a memory leak problem. Problems of the author in using the Spring+Quartz usage is as...

ColdFusion FlashGateway deserialization vulnerability analysis-vulnerability warning-the black bar safety net

2019 2 May 12, the official Adobe released for Adobe ColdFusion security update patch, numbered APSB19 to 10. But for the vulnerability analysis, the current online I just saw an article that https://paper.seebug.org/811/, although the article did not give too many details for our Munchkin, but...

Nearly half of Apple iOS users not to upgrade to the latest version easily by a known high-risk flaws vulnerability bug violations-vulnerability warning-the black bar safety net

the iOS system has always been to its good safety deep to give a large user of trust, in particular its security into the level rate with Android than there is a significant upper hand. But according to baidu security Labs hundreds of millions of the Taiwan Strait within the iOS equipment system...

BlueBorne Bluetooth flaws vulnerability bug depth research and PoC-vulnerability warning-the black bar safety net

The other day, and armis burst a series of Bluetooth flaws, no war no perception of the receiving system can be a bit can be hacked, and essentially impact all of the Bluetooth equipment, the persecution of the immeasurable, can be seen here https://www.armis.com/blueborne/ to understand how it...

The SMB vulnerability triggered“bloodshed”, far more than WannaCry-vulnerability warning-the black bar safety net

Preface Since the Shadow Brokers published NSA Elite hacking team Equation Group the use of 0-day vulnerabilities and hacker tools, hacker groups and independent hackers started to exploit these vulnerabilities and tools to initiate various attacks. But industry insiders believe that the 4 month...

The widespread use of email components: PHPMailer remote code execution vulnerability exists-vulnerability warning-the black bar safety net

Recently, Polish researchers Dawid Golunski discovered a present in the PHPMailer in a serious remote code execution vulnerability. The vulnerabilities in yesterday's legalhackers. com published on, but the exploit details of a proof-of-concept and is not included. Unfortunately in a couple of...

Router vulnerability analysis the fifth bomb: CVE-2018-5767 router remote code execution-vulnerability warning-the black bar safety net

Vulnerability overview CVE-2018-5767 TENDA AC15 router right remote code execution Reference information: https://www.fidusinfosec.com/remote-code-execution-cve-2018-5767/ Vulnerability firmware version: Tenda cn Ac15firmware:15.03.1.16 2. The vulnerability analysis. Vulnerabilities file is...

Crack*. mdb currently all versions of the password-vulnerability warning-the black bar safety net

On the Access97 password hack, in a lot of sites and magazines have been introduced. Here I simply repeat it. In the mdb file the 0x42 Byte 1-3 byte, respectively, with 0x86,0xfb,0xec,0x37,0x5d,0x44,0x9c,0xfa,0xc6,0x5e,0x28,0xe6,0x13 XOR can be obtained after the database password. But in Access ...

FastJson denial of service attack warning-vulnerability warning-the black bar safety net

0x00 vulnerability background 2019 9 November 5, 360CERT monitoring to 2019 9 November 3 fastjson in the commit 995845170527221ca0293cf290e33a7d6cb52bf7 presented is designed to repair when the string contains\x escape characters may lead to OOM issues of repair. 360CERT determine the vulnerabili...

Chakra vulnerability debugging notes 1--ImplicitCall-vulnerability warning-the black bar safety net

Chakra is Microsoft's next-generation browser, Microsoft Edge the Javascript parsing engine, 继承自IE浏览器的jscript9.dll and on GitHub open source for ChakraCore it. Chakra since open source has become a Windows platform vulnerability discovery one of the main goals, is also everyone to learn binary...

Tomcat Security Constraint Bypass CVE-2017-5664 analysis-vulnerability warning-the black bar safety net

1. DefaultServlet role I'm in front of the public, the article said, the JspServlet's role is to process the jsp and jspx files a request, then the non-jsp jspx is by the DefaultServlet to handle it different, but because it is a tasteless, not discussed here so much, here we simply believe that...

In-depth exploration found in the wild iOS exploit chain IV-vulnerability warning-the black bar safety net

Overview This exploit chain for iOS 12 – 12.1 version, when we found in the wild exploit of the chain, the two vulnerabilities are no official patch released. So we to an Apple reported two vulnerabilities in the 7 days after the iOS release 12. 1. 4 updated version. Here's the sandbox escape...

The researchers published the iOS kernel exploit code-exploit warning-the black bar safety net

From the mobile security company Zimperium researchers Adam Donenfeld published zIVA kernel exploit program PoC code. zIVA affect iOS 10.3.1 and prior versions, an attacker can by zIVA using the code to get any read-write and root access. Apple 5 months to fix the vulnerability Apple to 5 months ...

IE browser vulnerability integrated use of technology: the heap spray techniques-vulnerability warning-the black bar safety net

The browser was once the vulnerabilities wreak havoc on the hardest-hit areas, in the IE6 era often accidentally open a page will be caught. Even in the web the penetration circles also spread through the“Get shell hanging horse”such a word. Then this is the case when is a difference? I personall...

Apache-mod_session_crypto module in the Padding Oracle vulnerability analysis-vulnerability warning-the black bar safety net

Recently, security researchers at theWeb serverApache modsessioncrypto module found a Padding Oracle vulnerability. An attacker can exploit this vulnerability to decrypt the session data, and even can be used to specify the data to be encrypted. Vulnerability details Product: Apache HTTP Server...