A directory traversal triggered by the injection and follow-up--XG SDK vulnerability review and reflection-vulnerability warning-the black bar safety net

XG SDK is one of the popular Android app of push SDK, there are quite a few popular Android apps are in use, the paper analysis the version is mainly for 100001workweixin1. 0. 0. apk the version. Vulnerability initially in 2016 4 month of time to submit it to a cloud site, the manufacturer has...

NetGear R series multi-router remote command injection vulnerability analysis-vulnerability warning-the black bar safety net

Two days before the NTP just doing the complete thing, the NetGear routerNETGEAR routerand to engage in things of T. T. The current CERT in the last week, five have issued a notice,“if the user comes to the router, it is recommended to stop use until the official release of the patch repair.” Thi...

In ie8 using ROP and Heap Spray using the bounce of the shell-vulnerability warning-the black bar safety net

This exploit program is for the Windows 7 platform on the IE8 browser. The focus of our attention is one that uses the Java network launch Protocol JNLP the plug-in, this plug-in there is overflow vulnerability. In order to achieve the use, I will use the Heaplib to construct a ROP chain in order...

Yahoo mail storage type XSS vulnerabilities, hackers can look at anyone's mail-vulnerability warning-the black bar safety net

Recently from Finland Klikki Oy, a researcher Jouko Pynnönen has published a blog, which demonstrates a malicious attacker how to useXSSvulnerability attack under Yahoo mail, the victims Inbox messages sent to an external site; and constructing a virus, this virus can be passed to the email...

Netgear R7000/R6400 like router exposure remote arbitrary command injection vulnerability, CERT recommends that a comprehensive moratorium on the use-vulnerability warning-the black bar safety net

You with Netgear NETGEAR router? The recent need to be extra careful, especially router model R7000 and R6400 users-Netgear other models the users also need to beware. CERT/CC-us computer Emergency Response Team Coordination Center on Friday issued a security Bulletin, users are advised to suspen...

JXBrowser JavaScript-Java bridge in the RCE vulnerability-vulnerability warning-the black bar safety net

I recently was studying how to use JXBrowser to achieve a set of experimental scanning techniques. When I use JXBrowser library in the process, I suddenly thought, whether it can be by calling different classes to attack the JXBrowser client, and through a Web page to achieve remote code executio...

Jingdong response to data breaches rumors: from 2013 Struts 2 security vulnerability-vulnerability warning-the black bar safety net

Yesterday the media reported, saying that suspected jingdong 12 G data was leaked, involving the user name, password, email, QQ number, telephone number, ID card, etc. multiple dimensions of information on this, jingdong represented by the preliminary determination, the data from 2013 Struts 2...

TR-064 vulnerabilities to the affected vendors of equipment and TR-064 Protocol security analysis-vulnerability warning-the black bar safety net

! Author: British Xiphos Research, senior security researcher Darren Martyn Over the past few weeks, the embedded device demonstrated the security situation worrisome, in the Mirai early code is public, I think some of the“smart device”botnet will quickly spread, in addition to the telnet scannin...

The vulnerability of the war of cve-2012-0003 study analysis-vulnerability warning-the black bar safety net

这个 漏洞 是 由于 微软 的 多媒体 库 winmm.dllc:\windows\system32\winmm.dllin the processing of MIDI files, since the data of the improper handling causes the"stack overflow", the attacker can be embedded in a web page a special MIDI file to the remote execution of arbitrary code. 0x01 ready to work Using the m...

PHP 5.6.29 releases, security vulnerability fixes-bug warning-the black bar safety net

The PHP development team announced PHP 5.6.29 available. This is a safe version that fixes several security vulnerabilities. Suggested that all PHP 5.6 users upgrade to this version. Update content: Mysqlnd: Fixed bug 64526 the missing mysqlnd. Add parameters to the php. ini-. Opcache: Fixed bug...

Security researchers found that attack kits favorite Flash Player security vulnerabilities-vulnerability warning-the black bar safety net

By RecordedFuture a new study suggests that, due to its vulnerability, Flash Player will continue to the global computer at risk, cybercriminals are still looking for the Adobe solutions among the security flaws to the invasion of the computer. This year the exploit kit used by the top 10...

Roundcube1. 2. 2 by email command execution vulnerability analysis-vulnerability warning-the black bar safety net

Foreword Roundcube is an open source web version of the email software, which are widely distributed, many of the world's organizations and companies are in use. From ScourceForge the mirror view, the past 1 years it has 26 million downloads, this is still just the actual user in a small part. As...

ImageMagick compression of TIFF image remote code execution vulnerability, CVE-2016-8707-a vulnerability warning-the black bar safety net

! Vulnerability overview Recently, Cisco Talos has published an article on ImageMagick remote code execution vulnerabilities notice: the Vulnerability Spotlight: ImageMagick Convert Tiff Out of Bounds Write attacker successfully exploited vulnerability can lead to remote code execution. About...

Through AWS, Google Cloud and Digital Ocean DNS vulnerability take over nearly 12 million domain names-bug warning-the black bar safety net

Shortly before, I was at cloud hosting provider Digital Ocean domain into the system found a security vulnerability, an attacker or may exploit this vulnerability to take over two million of the plurality of domain names in the report of the transfer gate on. If you have not read this report whil...

Error session termination mechanisms lead to account hijacking-vulnerability warning-the black bar safety net

Error session termination mechanisms Session termination is to secure the session period in one important aspect. Security implementation session tokens can effectively reduce the session hijacking attack. The session is terminated as the number of attack control mechanisms, such asXSS（cross-site...

Linux kernel flaw hack obtain Server Control permissions-bug warning-the black bar safety net

Security researchers said that the average user can use three security flaws to get to theLinux serveror workstation. Two defects exist in the Linux kernel memory management module. According to the Polish security vendor iSEC security information company in the local time this Wednesday the...

Vulnerability analysis cisco analysis tools-vulnerability warning-the black bar safety net

cisco Auditing: A small security audit tools, scanning Cisco router General vulnerabilities, such as default passwords, SNMP community strings and some of the old IOS bugs. CAT-h xx. xx. xx. xx. cisco-global-exploiter:cisco vulnerability penetration testing, there are 14 different vulnerabilities...

Note, the cURL of the vulnerability nor less-vulnerability warning-the black bar safety net

! Security expert on cURL conducted an audit that found dozens of security vulnerabilities in the latest version has been fixed. cURL surely we are not unfamiliar, it is an open source command-line tool and library that supports a variety of protocols to transfer data. cURL is now the application...

Apple iOS new vulnerability: hackers can bypass the“activation lock”-vulnerability warning-the black bar safety net

Foreign media reports that security researchers recently discovered one can be used to bypass Apple iOS“activation lock,”the Activation Lock function of the vulnerability, and even evaluate the latest iOS10. 1. 1 system is also not spared. ! Apple iOS new vulnerability: hackers can bypass...

The firmware binary code of the simulation and exploit technology-vulnerability warning-the black bar safety net

In a previous article, we introduced a firmware analysis and extraction of the file system method. In this article we will further introduce how to in-depth analysis of firmware binaries, and then use its common security vulnerabilities. In this paper, we will relate to the following as shown in...

Doing things the NTP----CVE-2016-7434 vulnerability analysis-vulnerability warning-the black bar safety net

The NTP Protocol Analysis with CVE-2016-7434 About the client and the NTP server, the NTP Protocol interaction, the synchronous time of process I is no longer described in detail, with a pair of figure can be a brief description of the time synchronization process, in this process, the data take...

Apache Tomcat multiple versions of a remote code execution CVE-2016-8735(POC)-vulnerability warning-the black bar safety net

Background description Tomcat is by Apache Software Foundation subordinate's Jakarta a project development Servlet vessel, in accordance with Sun Microsystems to provide the technical specifications, the realization of the Servlet and JavaServer Page（JSP）support, and provides as aWeb serversome...

Doing things the NTP----CVE-2016-7434 vulnerability analysis-vulnerability warning-the black bar safety net

Foreword Recently this period of time, the NTP doing things, and a lot of safe media also reported that many NTP vulnerabilities are very interesting, NTP is a Network Time Protocol, used to synchronize between the various computers of the time, there are someDDoSis the use of NTP amplification...

Topsy CSRF of burrows instance share-vulnerability warning-the black bar safety net

0x01 Foreword Recent digging in the SRC often encounter some CSRF vulnerabilities and found that in fact grasp the principle after it is easy to dig to about the CSRF vulnerability. In the usual vulnerability discovery, CSRF is also not too high threshold, the technical requirements are not so...

Nginx elevation of privilege vulnerability(CVE-2016-1247) analysis-vulnerability warning-the black bar safety net

0x00 vulnerability overview 1. Vulnerability description 11 on 15 September, foreign security researcher Dawid Golunski discloses a new Nginx Vulnerability, CVE-2016-1247, and can affect based on Debian-based distributions, Nginx as the current mainstream a multi-purpose server, and thus its harm...

Hand to hand teach you how to construct the office exploits EXP（fourth period）-bug warning-the black bar safety net

This is a period of vulnerability to share with you is CVE-2015-1641 learning summary, this vulnerability due to its good versatility and stability claims to have replaced the CVE-2012-0158 trend. The vulnerability is a type confusion class of vulnerability, through which you can achieve arbitrar...

angr:python-based binary analysis framework-vulnerability warning-the black bar safety net

Foreword Take a look at this Integrated Framework in binary code analysis of the CTF, to solve what the problem it, here is the git are listed in the solution to the CTF game: ! ! Wherein, HackCon 2016 - angry-reverser takes 31 min, SecurityFest 2016 – it takes 20s, Defcamp CTF Qualification...

Win10 attacking God skills: system update when you long press the SHIFT+F10 keys to open the CMD interface-vulnerability warning-the black bar safety net

! Recently, security experts Sami Laiho found a way to bypass the BitLocker limit, get the Win10 system control method: when Win10 update and install the associated system version, long-press the SHIFT+F10 key, This will open the CMD command line control interface! And according to Sami Laiho...

The React application in the most common XSS exploits and Defense-vulnerability warning-the black bar safety net

The author has been firmly React technology stack of the user, and therefore will pay attention to the React application security related topics. The author in my ownReact+Redux+Webpack2scaffolding the third level also uses a lot of server-side rendering/isomorphism straight out of the technology...

Simple Android application service end of the security vulnerability of SQL injection vulnerability and file upload vulnerability-vulnerability warning-the black bar safety net

The first three weeks, the dandelion for everyone brief introduction to the Android application of APP end of the Common Vulnerabilities, they are: Android-developers APP end common security vulnerability interpretation-sensitive information disclosure vulnerability Simple App end security...

Simple Android application service end of the security vulnerabilities of unauthorized vulnerability-vulnerability warning-the black bar safety net

Last week a dandelion to introduce the Android application services end-ofSQL injectionvulnerability and file upload vulnerability: Simple Android application service end of the security vulnerabilities ofSQL injectionvulnerability and file upload vulnerability This week will continue to bring th...

joomla create ordinary user vulnerability analysis(cve-2016-8870)-vulnerability warning-the black bar safety net

The experiment environment requirements Joomla version 3. 44 to 3. 63 Vulnerability analysis In joomla there are two user registration method: In the components/comusers/controllers/registration. in php UsersControllerRegistration::register In the components/comusers/controllers/user. in php...

Simple App to-end security vulnerability of any debugging vulnerabilities, the middleman hijacking vulnerability and the encryption algorithm vulnerability-vulnerability warning-the black bar safety net

Last week to introduce to the APP-end backup feature is turned on vulnerability and local denial of service vulnerability this week to introduce the completion of the last of the three common App-side vulnerabilities: arbitrary debugging vulnerabilities, MiTM hijacking vulnerability and the...

Simple App to-end security vulnerability of the backup function is enabled and a local denial of service vulnerability-vulnerability warning-the black bar safety net

The last description about the App end to sensitive information leaks, then the App end what security vulnerability is worth the developers food for thought and attention? When an App installed in A mobile phone, the user Joe Smith to login through the App, the login data is stored in the mobile...

joomla create a privileged user exploit analysis(cve-2016-8869)-vulnerability warning-the black bar safety net

Vulnerability environment Joomla version 3. 44 to 3. 63 Vulnerability description This vulnerability and CVE-2016-8869 is a companion piece to the vulnerability, but this vulnerability than 8869 this vulnerability, the ideas more ingenious, more interesting. This vulnerability nature is also...

Three roads lead to Rome-vulnerability warning-the black bar safety net

In the past two years has been focused on the browser aspect of the research, mainly in the Fuzz-based, fuzzing in the user state of vulnerability discovery, whether it is a vulnerability in quality or CVE outputs have been good results. Until some big players involved, as well as a large number ...

Router high-risk vulnerabilities induced the German telecommunications ultra 90 million users suffered network disruption-vulnerability warning-the black bar safety net

! Event overview Last weekend millions of German Internet users suffered a series of network outages, investigate its reason is a failure of the home routers hijacked. Deutsche Telekom's 2000 million users with 90 million users received the interrupt effect from the last Sunday continues to prese...

iPhone playing the video automatically shut down“wonderful”vulnerability cause analysis-vulnerability warning-the black bar safety net

A description of the No. 23 in the morning major Network Media issued a newsiOS also exposed new vulnerabilities, play a particular video led to the automatic shutdown with the demo video））, the main contents are: Apple iOS devices and is a burst of new vulnerabilities that play a particular MP4...

Uber fix three vulnerabilities, the white hat won thousands of dollars in rewards including vulnerability analysis-vulnerability warning-the black bar safety net

Security expert Kevin Roh on Uber's online APP Uber Central found three vulnerabilities that may cause user data leakage. Uber timely fixes three vulnerabilities, and in Uber's vulnerability Bounty program to reward Kevin Roh thousands of dollars. Uber Central Uber Central services to year 7 on...

Linux application permissions incorrectly can provide the right series vulnerability analysis-vulnerability warning-the black bar safety net

Foreword linux to powerful file management system, in actual use, although able to work provide great convenience, but if the permissions improper handling, may cause a certain security risk, such as in the operation of the file, change some folder permissions, when the use of some can be freely...

The “elegance”of Linux vulnerabilities: rare ways to bypass the ASLR and DEP protection mechanisms-vulnerability warning-the black bar safety net

! The recent foreign researchers published a exp code in the finished patch to the Fedora and other Linux system on the drive-by attacks, in order to install keyloggers, backdoors and other malicious software. This exp is for the GStreamer framework in a memory-corruption vulnerability that...

The NTP vulnerability can be caused by Windows System trigger DoS-vulnerability warning-the black bar safety net

! The researchers published for cve-2 0 1 6-9 3 1 1 vulnerability PoC of this vulnerability can cause the NTP daemon to crash, and trigger the Windows System to denial of service. The NTP Protocol can be used by hackers to exploit. NTP is a widely used Clock synchronization Protocol, this Protoco...

About the Jenkins CLI vulnerability briefings-vulnerability warning-the black bar safety net

Recently, the national information security vulnerabilities library CNNVD received on the Jenkins CLI remote code execution vulnerability existsCNNVD-2 0 1 6 1 1-3 8 4in the case of the message send. The vulnerability is caused by the Jenkins CLI present Java deserialization issues, which lead to...

Via WordPress Auto Update feature disposable invasion Internet 2 7%site-vulnerability warning-the black bar safety net

Recently, we are still constantly trying to find the WordPress community in a third-party plug-ins and themes in the presence of security vulnerabilities. During the study, we are also on WordPress core, and the associated wordpress. org system were detected. In the beginning of the year, we...

A for TP-Link debug Protocol TDDP）vulnerability Mining the story-vulnerability warning-the black bar safety net

I wrote this article originally in order to simplify the WiFi penetration testing research work. We want to use last year by the Core Security released WIWO, it can be a computer network interface and a WiFi Router between the establishment of a transparent channel. Research the first step is to...

AndroidNative layer file parsing vulnerability mining guide-vulnerability warning-the black bar safety net

This article to hand Q A file parsing class vulnerability discovery, for example, describes the Android Native layer file parsing type of the vulnerability discovery process Hand Q this application from the function is very large, if the use similar to the MFFA framework to dig the file parsing...

Overflow using FILE structure-vulnerability warning-the black bar safety net

Recently, the Shanghai University student network security game it only shows a title pwn450, for not a lot of me, and instantly rip off forced, but the gangster or gangster, and finally was quite what the Yankees do come up, but anyway I didn't make out, and finally see explanations, with two...

Fuzzing Android: tap the Android system components components of vulnerability-vulnerability warning-the black bar safety net

Full-text overview This article focuses on one can be used to find Android system components in the different types of vulnerability fuzzing method. This article describes a General purpose vulnerability discovery method, and he is how applications on Android platform. The following is a has been...

A website icon trigger the bloodshed now! To bypass the same origin policy, determine whether you are logged into a website-vulnerability warning-the black bar safety net

! Foreword I want to tell you is that in the absence of your consent, most of the current mainstream network platform will be a leak of your login status. Regardless of your current whether or not a login operation, the attacker can detect to your computer, log in those networking platform. And...

WordPress auto-update mechanism of the serious vulnerability: the global ultra-1/4 site can be hacker in one fell swoop rout-vulnerability warning-the black bar safety net

Wordfence recently disclosed an impact of a large range of security issues, a large number of WordPress sites are affected. This exploit is WordPress Auto-Update feature, this feature is enabled by default, but also because the entire on the Internet there are about 2 7% of the sites are using...