The use of the macOS kernel vulnerability to escape the Safari sandbox-vulnerability warning-the black bar safety net

In the Pwn2own 2017 game, Apple macOS Sierra and Safari 10 become is attack up one of the goals. In this competition process, although there are multi-branched clan successfully/semi-successfully completed on macOS + Safari target compromised, however 360 security team use exploits the minimum...

Bitdefender in processing PE code signing the organizationName field when there is buffer overflow vulnerability-vulnerability warning-the black bar safety net

A vulnerability summary This paper describes the Bitdefender PE engine in the presence of a buffer overflow vulnerability. Bitdefender provides“anti-malware antimalware”of the engine, the engine can be integrated to other security vendors ' products, Bitdefender in their products, such as...

Eternal blue-advanced version struck--the eternal stone integrated 7 vulnerability-vulnerability warning-the black bar safety net

In WannaCry crazy spread towards the end of last week three 5.17 security researcher Miroslav Stampar（the Government of Croatia CERT members, Sqlmap one of the creators of in his build of SMB honeypot, the discovery of new worms is through SMB vulnerability propagation. Researcher Stampar honeypo...

The SMB vulnerability triggered“bloodshed”, far more than WannaCry-vulnerability warning-the black bar safety net

Preface Since the Shadow Brokers published NSA Elite hacking team Equation Group the use of 0-day vulnerabilities and hacker tools, hacker groups and independent hackers started to exploit these vulnerabilities and tools to initiate various attacks. But industry insiders believe that the 4 month...

OpenSSL handshake renegotiation process in the presence of the vulnerability can lead to denial of service-vulnerability warning-the black bar safety net

One, Foreword OpenSSL is a very popular General-purpose encryption library, available as a Web authentication service to provide SSL/TLS Protocol Implementation. Recently, there has been found in OpenSSL in the presence of several vulnerabilities. We've written several articles on the analysis of...

Windows 10 x64 Edge CVE-2016-7200 & CVE-2016-7201 vulnerability analysis and exploit-vulnerability warning-the black bar safety net

The 1. Analysis of the environment Operating system: Windows 10 x64 Professional Edition 10.0.14393 browser: Microsoft Edge x64 38.14393.0 2. CVE-2016-7200 analysis This is happening in the JavascriptArray::FilterHelper, due to the type of Confusion caused by the vulnerability, look at the commit...

Joomla! 3.7.0 SQL injection attack vulnerability analysis-vulnerability warning-the black bar safety net

Joomla is a world second most popular content management system. It uses the PHP language together with MySQL database the development of the software system, can in Linux, Windows, MacOSX, etc. a variety of different platforms perform, and currently by the open source organization Open Source...

The Uber platform coming out of authentication vulnerabilities, exploit the vulnerability can reset any account password-loophole warning-the black bar safety net

Italian security expert Vincenzo C. Aka found the Uber platform authentication vulnerabilities, any account can use this vulnerability to reset the password, this discovery yesterday officially announced. In fact, the initiator of the“authentication crisis”the vulnerability is in the seven months...

Apple is not bulletproof, recently released multiple patches to fix security vulnerabilities-vulnerability warning-the black bar safety net

When Windows users are worried about theoperating systemto suffer want to cry ransomware worm hijacking, Apple users also have the peace of mind that malware attacks do nothing don't them. But the actual is not so, Apple products are not bulletproof, an e-book you can black out the Mac, iPhone an...

How to use. NET managed DCOM to achieve elevation of privilege-vulnerability warning-the black bar safety net

Affect the interoperability of technical vulnerabilities are a class of more interesting security vulnerabilities, this is because these vulnerabilities typically affect the use of the technology is any application, whether the application actually perform what operation. Similarly, in many cases...

Oracle's PeopleSoft products was traced to the presence of unauthorized remote code execution vulnerability-vulnerability warning-the black bar safety net

Oracle PeopleSoft In a few months ago, I was fortunate enough to get to review Oracle's PeopleSoft solutions the opportunity to review object including PeopleSoft HRMS and PeopleTool. In addition to the few not recorded in the case of CVE addition, the network did not seem to me to provide how mu...

Joomla! v3. 7 SQL injection high-risk vulnerability is a technical analysis of CVE-2017-8917-a vulnerability warning-the black bar safety net

comfields components loopholes, comfields Assembly is in 3. 7 version Added, if you use this version, will be affected and should be updated soon. This component publicly accessible, which means that any be able to access your site the user can initiate the attack. Vulnerability details ! From th...

Joomla! 3.7 Core SQL injection (CVE-2017-8917)vulnerability analysis-vulnerability warning-the black bar safety net

Author: p0wd3r know Chong Yu 404 security lab Date: 2017-05-18 0x00 vulnerability overview Vulnerability description Joomla to 5 on 17 May released the new version 3. 7. 1, of this update fixes a high-riskSQL injectionvulnerability to successfully exploit the vulnerability an attacker can...

Fatal vulnerability will allow an attacker to bypass Apple's OTR signature verification and steal your iCloud keychain information-vulnerability warning-the black bar safety net

! Background content In the analysis of the iOS platform and sandbox escape about the attack surface when we in the iCloud keychain sync feature of OTR implementation has discovered a serious security vulnerability. iCloud keychain sync feature allows users in a secure manner across the device to...

The next“eternal blue”6 months? Shadow Brokers organization announced that it will open more 0day vulnerabilities it! - Vulnerability warning-the black bar safety net

! 5 month 12 days late, a WannaCry worms ransomware attacks in the global network, which is considered by far the most huge extortion payment activities, the impact to nearly a hundred countries and thousands of businesses and public organizations. This virus is the use of“N. S. A. arms Gallery”i...

For the APT organization to use the EPS vulnerabilities in and mention the right vulnerability analysis-vulnerability warning-the black bar safety net

In 2015, FireEye released a Microsoft Office EPS（Encapsulated PostScript in the two vulnerability details. Wherein, a is 0day vulnerabilities, one in the attack a few weeks before playing the patch. Recently, FireEye and Microsoft Office products in the discovery of three new 0day vulnerabilities...

Share“the eternal blue MS17-010）”batch remote detection tools-vulnerability warning-the black bar safety net

In view of the distinguished manufacturers are relatively self-sustaining, refused to publish easy-to-use batch scanning tool, here on behalf of. You hard to force the network, you find in their own territory and sweep. In particular despise itonly to pay for the user issuing the batch testing...

Original Bluetooth App vulnerability series analysis one of the CVE20170601-vulnerability warning-the black bar safety net

Author: little Lotus just buds@MS509Team 0x01 summary 2017 5 on Android security Bulletin fixes we submitted a Bluetooth mention the right to risk vulnerability, this vulnerability although simple, but rather interesting, able to make local malicious Apps to bypass the user interaction, allowing...

CVE-2011-0065 Firefox after the release reuse vulnerability-vulnerability warning-the black bar safety net

Author: k0shl reprint please indicate the source: http://whereisk0shl.top Today is mother's Day, wish all mothers good health, happiness and happy! Vulnerability description Software download: https://www.exploit-db.com/apps/1b7d038f1ca394ef19714846091f7464-FirefoxSetup3.6.16.exe PoC: !/...

XXE vulnerability attack and Defense I see-vulnerability warning-the black bar safety net

Whether you've heard of xml injection attacks?, or its only known one not the other? Now let's start with xml-related basics, a step by step understanding of xml attack the principle and manner. This article is mainly for literacy, please bigwigs light spray, have a wrong place welcome notes. XML...

QuickZip V4. 60 buffer overflow vulnerability details-vulnerability warning-the black bar safety net

This article will provide the reader a detailed description QuickZip v4. 60 buffer overflow vulnerability knowledge. Due to the vulnerabilities in 2010 appeared, so it's designed only for 32-bit Windows XP. So, I decided to try it in 64-bit Windows 7 reproduce the vulnerability, it would be a fun...

Google said in the release“of the Android O”the new version will not fix the screen hijacking vulnerability-vulnerability warning-the black bar safety net

Millions of Android smartphones are suffering from a serious“screen hijacking”vulnerabilities, a hacker could steal user passwords, Bank details and help ransomware app to steal money. Google is claiming that publishing the“Android O”version does not fix the vulnerability The worst thing is that...

CVE-2017-8386: using the less command to bypass the git-shell limit-vulnerability warning-the black bar safety net

git-shell git remote session on the introduction of a ssh tunnel, is a restricted shell. Its the basic idea behind is, in the ssh session limit to be able to execute the command, so that it can only execute git needs the appropriate command. git needs to execute the command as follows:...

Microsoft is the aeration Windows latest remote code execution vulnerability: extremely bad! Now the vulnerability details have been released-vulnerability warning-the black bar safety net

It is well known that Google has an internal Super hacker team-the“Project Zero”, according to securityaffairs 5 months 8 reported that Google Project Zero researcher in the Microsoft Windows OS found a remote code execution vulnerability RCE, but this is not a simple RCE, they put it characteriz...

WordPress 4.6 remote code execution vulnerability analysis-vulnerability warning-the black bar safety net

WordPress 4.6 version remote code execution vulnerability is a very serious vulnerability, an unauthorized attacker to exploit the vulnerability will be able to achieve remote code execution against a target server for instant access, eventually leading to the target application server completely...

Google find Windows nuke-level vulnerability and cannot be fixed-bug warning-the black bar safety net

Google security experts recently in the Microsoft Windows operating system find an unpatched vulnerability, and the security risk is high. Project zero researchers TavisOrmandy and NatalieSilvanovich this week announced that they on the Windows in the found they say“the worst”RCE, but did not...

Google openly“history's most severe”Windows RCE vulnerability details-vulnerability warning-the black bar safety net

Google Project Zero security team researcher Tavis Ormandy and Natalie Silvanovich that Windows found a serious vulnerability. Such as, within 90 days, the vulnerability has not been repaired, then they might publish the details. Recently, the vulnerability details have been released. Google to...

Intel AMT features to remotely provide the right high-risk vulnerability analysis-vulnerability warning-the black bar safety net

Earlier this week, Intel released a high-risk mention the right vulnerability, the impact of the range including the past 7 years Intel Server chip remote management capabilities. A remote attacker can exploit the vulnerability control there PC's, laptops and servers. This vulnerability number...

MS16-145: Edge browser the TypedArray. sort UAF vulnerability analysis-vulnerability warning-the black bar safety net

In this article, we will provide the reader detailed analysis of how to use the MS Edge browser in the UAF vulnerability to remote code execution. This article will provide readers in-depth analysis of the impact of MS Edge CVE-2016-7288 UAF vulnerability root causes, and how to reliably trigger...

CVE-2017-7985&7986: detailed analysis of the Joomla! Two XSS vulnerabilities-vulnerability warning-the black bar safety net

Joomla! Is the world's most popular CMS solutions. It allows users to custom build website powerful online applications. According to incomplete statistics on the Internet more than 3% of the websites running Joomla!, At the same time its share of the global more than 9% of the CMS market share...

Detailed analysis of the PHP mail()function exploit techniques-vulnerability warning-the black bar safety net

This white paper aims to eliminate about PHP mail function in exploit the limitations of some of the misunderstandings, and demonstrate the use of the further development. It provides several on the PHP mailfunction of the new exploit and bypass the technology of the vector, in major PHP e-mail...

WordPress 4.6 remote code execution vulnerability analysis-vulnerability warning-the black bar safety net

WordPress 4.6 version remote code execution vulnerability is a very serious vulnerability, an unauthorized attacker to exploit the vulnerability will be able to achieve remote code execution against a target server for instant access, eventually leading to the target application server completely...

Jenkins unauthorized code execution vulnerability analysis, updated the vulnerability of the environment, to detect script-vulnerability warning-the black bar safety net

A, summary CloudBees Jenkins 2.32.1 version exists in Java deserialization vulnerability, and ultimately can lead to remote code execution. Jenkins is a continuous integration continuous integration and continuous delivery system, can improve the software development process of the Central Africa...

PHPCMSv9. 6. 1 arbitrary file read vulnerability of mining and the analysis process-exploit warning-the black bar safety net

See the online uttered such a vulnerability, so the evacuation analysis, the results of the present article The analysis. 1. Ready to work&the vulnerability of key points a quick scan 1.1 pre-knowledge Here put this analysis requires knowledge of combing the following: 1. php native parsestr meth...

NSA Fuzzbunch in EaseBee the use of research methods and MDaemon vulnerability analysis-vulnerability warning-the black bar safety net

0X01 overview EaseBee is the NSA-developed for the mail system, MDaemon code execution vulnerability a tool, which supports multiple version of MDaemon is a well-known standard SMTP/POP/IMAP mail service system, by the American Alt-N company development. It provides full mail server functionality...

Within the network of a large kill. Metasploit transplant MS17-010 vulnerabilities in the code module use-vulnerability warning-the black bar safety net

0x01 introduction 2017 year 4 June, a network of the most sensational events is undoubtedly TheShadowBrokers the release of a large number of NSA US National Security Agency“The formula of the organization” Equation Groupusing a destructive hacker tools, including remote compromised globally, abo...

WordPress 4.6 remote code execution vulnerability-vulnerability warning-the black bar safety net

On WordPress WordPress is a focus on aesthetics, usability and web standards of personal publishing platform. WordPress although it is a free open source software, but its value can not use money to measure. Using WordPress you can build powerful web information publishing platform, but more is...

See how I dug into the Twitter XSS vulnerabilities and bypass the CSP-vulnerability warning-the black bar safety net

A few months ago, I dug up a TwitterXSSvulnerability, while bypassing a site's content security policy CSP successfully executed the JavaScript code. In the present article will be mainly to share theXSSloophole mining ideas and specific details while in the article that comes with the PoC demo...

Jenkins unauthorized code execution vulnerability analysis-vulnerability warning-the black bar safety net

A, summary CloudBees Jenkins 2.32.1 version exists in Java deserialization vulnerability, and ultimately can lead to remote code execution. Jenkins is a continuous integration continuous integration and continuous delivery system, can improve the software development process of the Central Africa...

PHPCMS V9. 6. 1 arbitrary file read vulnerability analysis-vulnerability warning-the black bar safety net

PHPCMS today 2017 5 month 3 days afternoon has released 9. 6. 2 Version fixes the vulnerability. PHPCMS V9. 6. 1 is a front time PHPCMS official to 4 on No. 12, the launch of the version that fixes the 4-month early publication of two high-risk vulnerabilities, a front Desk registration interface...

In-depth analysis of exception-based iOS exploit technology-vulnerability warning-the black bar safety net

This article will provide the reader a detailed description numbered CVE-2017-2370 machvoucherextractattrrecipetrap mach trap heap overflow discovery and use of the process. Here not only describes this vulnerability itself, but also to explain a loophole in the use of technology development...

WebSocket vulnerability and protection details-vulnerability warning-the black bar safety net

socket description A socket is a network communication of an endpoint. the socket is always divided into two parts: an IP address and a port. For example:when you visit www. myhack58. com, your computer and the website server is using socket（endpoints to communicate. The website endpoint will be:...

PWN2OWN 2017 the Linux kernel to mention the right vulnerability analysis-vulnerability warning-the black bar safety net

! 0. Foreword In 2017, the PWN2OWN contest, the long Pavilion security research lab Chaitin Security Research Lab successfully demonstrates Ubuntu 16.10 Desktop of the local extraction rights. This attack mainly use the linux kernel IPSEC frameworkfrom linux2. 6 Start supportin a memory bounds...

StringBleed: SNMP Protocol“God mode”vulnerability affects a variety of network devices-vulnerability warning-the black bar safety net

Recently, data from South America, two security researchers discovered that the SNMP（Simple Network Management Protocol the v1 and v2 version of the Protocol the presence of the authorized authentication and access control bypass vulnerability, at least 78 kinds of models of network access and Io...

Based on jemalloc Android exploit skills----CENSUS-bug warning-the black bar safety net

Background description jemalloc-related research argp and huku in 2012 in Phrack published on: jemalloc memory allocator a separate use of themade-based on FreeBSD libc POC. argp and huku in 2012 BlackHat published: in Firefo play bad jemalloc metadata. argp in 2015 INFILTRATE on jemalloc exploit...

Zabbix blast remote code execution vulnerability, a database written in a high-risk vulnerability-vulnerability warning-the black bar safety net

! About Zabbix zabbix is a WEB-based interface to provide distributed system monitoring and network monitoring capabilities of enterprise-class open source solutions. zabbix to monitor various network parameters, ensure that the server system of the security operations;and to provide flexible...

In the picture, the added noise will be able to fool Google's best image recognition AI-vulnerability warning-the black bar safety net

! Recently, a group from the University of Washington, network security lab NSL's computer experts found that a malicious attacker can trick Google's CloudVision API, this will cause the API to the user-submitted images were incorrectly classified. In recent years, based on the AI of the image...

StringBleed attack: analysis of the SNMP Protocol remote code execution vulnerability-vulnerability warning-the black bar safety net

Write in front of words In the last year, held in Las Vegas, USA the twenty-fourth session of the DEFCON hacker conference, I, like everyone discussed about the IOT device SNMP write privileges to the security issues. We found through research, police patrol cars, ambulances, and other...

Zabbix multiple high-risk vulnerabilities-vulnerability warning-the black bar safety net

About Zabbix zabbix is a WEB-based interface to provide distributed system monitoring and network monitoring capabilities of enterprise-class open source solutions. zabbix to monitor various network parameters, ensure that the server system of the security operations;and to provide flexible...

The magic of Content-Type to: all versions of the IE browser there is a 0day vulnerability-vulnerability warning-the black bar safety net

We believe that this loophole one day in the future will certainly give you great help. Note that this vulnerability will affect all versions of IE in Win7, And Win8. 1 and Win10 on a test, but MicrosoftEdge not affected by this vulnerability. ! Vulnerability overview The server sends the respons...