There are Upload file the file name at the time of discovery of the delay injection vulnerability-vulnerability warning-the black bar safety net

! The It is author in invited to test items found in the Upload File name the filename of a time delay blind injection vulnerabilities, this position is relatively rare, Share this in hopes of everyone starting to learn a role. The following is the author of the discovery process. Earlier this...

MailEnable vulnerability warning CVE-2019-12923~CVE-2019-12927-the vulnerability warning-the black bar safety net

Recently, the mail server MailEnable broke a set of vulnerabilities, the first time for tracking and analysis of early warning. The study found that, using the set of vulnerabilities that an attacker can achieve the user data CRUD, the file is read and a portion of the override operation...

CVE-2019-11229 detailed analysis --git config controllable-RCE-vulnerability warning-the black bar safety net

2019 4 January 15, gitea had burst through a hole, coinciding with the time of this vulnerability more curious proceed to study a bit, and the vulnerability of the description is this: models/repomirror. go in Gitea before 1.7.6 and 1.8. x before 1.8-RC3 mishandles mirror repo URL settings, leadi...

See how I found Bol. com website the XXE vulnerability and successfully exploited-vulnerability warning-the black bar safety net

In a previous report, we learned a lot about in the visitor's browser to execute code knowledge; reflection typeXSSand a storage typeXSS. In addition, we also quickly see the error configuration of the server settings and Open Redirect open-type redirect to. Today, we will explore how from the...

Palo Alto GlobalProtect SSL VPN remote code execution vulnerability-vulnerability warning-the black bar safety net

One, Foreword Palo Alto GlobalProtect SSL VPN is the enterprise commonly used the SSLVPN products, recently disclosed a remote code execution vulnerability. Second, the vulnerability profile Palo Alto GlobalProtect SSL VPN in/sslmgr position exists format string vulnerability there is a remote co...

See how do I find Microsoft Outlook for Android mobile application XSS vulnerability-vulnerability warning-the black bar safety net

! Share today It's about the Outlook for Andriod storage typeXSSvulnerability, the author through a friend sent technology mail by chance discovered the vulnerability, after months of reproducing the structure, eventually Microsoft acknowledged the vulnerability, CVE-2019-1105-in. Vulnerability...

honggfuzz vulnerability mining technology principle analysis-vulnerability warning-the black bar safety net

Google AFLWinAFL, the libfuzzer and honggfuzz is the most famous of the three based on code coverage fuzzer is. Online on the AFLWinAFLanalysis of the articles more, and on the latter two Analysis Articles less. Before the spring brother has written about honggfuzz article: honggfuzz vulnerabilit...

Fastjson deserialization vulnerability alerts-a vulnerability alert-the black bar safety net

Recently, 360CERT monitoring to the widespread use of the JSON serialization framework Fastjson presence deserialization vulnerability can cause remote code execution, and there is evidence that The attacker can carefully construct the JSON data to achieve remote code execution, may cause the...

Affects more than four million Network Camera: Zoom client there is a 0 day vulnerability could lead to code execution-vulnerability warning-the black bar safety net

CVE number CVE-2019-13449: the Zoom client denial of Service Vulnerability in 4. 4. 2 version client fix CVE-2019-13450: network cameras information disclosure vulnerability currently are not released patch, plan on 7 November 10 release Foreword Recently, we found Zoom the client there are two...

17 years not to fix Firefox local file stealing vulnerability analysis-vulnerability warning-the black bar safety net

Recently, security researchers Barak Tawily of the homologous policy the Same Origin Policy attack carried out research and found that the Firefox browser due to file scheme URI to the same origin policy of improperly implemented, will lead to Firefox browser by the local file theft attack. Attac...

Discuz! ML arbitrary code execution vulnerability alerts-a vulnerability alert-the black bar safety net

2019 Year 7 month 11 days, the network appeared on a Discuz it! ML remote code execution vulnerability PoC, through Sangfor security researcher to verify the analysis found, the attacker can use the vulnerability in the request flow of the cookie field in the language parameter to insert arbitrar...

Redis is not authorized to access high-risk vulnerability alerts-a vulnerability alert-the black bar safety net

Recently, Sangfor security team found that open-source databases Redis broke up an unauthorized access vulnerability, the first time for tracking and analysis of early warning. The study found that the use of the vulnerability, the attacker can achieve rally shell for arbitrary code execution...

Apache axis remote command execution vulnerability alerts-a vulnerability alert-the black bar safety net

Recently, convinced that the server found the Apache axis component remote command execution exploit way. The vulnerability is essentially due to the administrator for the AdminService configuration error, when enableRemoteAdmin property is set to true, the attacker can remotely use of the...

Each rush of the weekend, all need to work together light getting tired of the twice cooked pork to enrich their inexplicable restlessness-vulnerability warning-the black bar safety net

Each rush of the weekend, all need to work together light getting tired of the twice cooked pork, to enrich yourself of the inexplicable restlessness that! Today, we'll take you to re-咂摸 a classic DOM UAF vulnerabilities is! To Re-analysis of a classic DOM UAF vulnerability case study: Firefox...

On the CMSMS SQL injection vulnerability in the reproduction and analysis and use-vulnerability and early warning-the black bar safety net

CMS Made SimpleCMSMSis a simple and convenient content management system which uses PHP, MySQL and Smarty template engine development, having a role-based rights management system, wizard-based installation and update mechanism, the system resources occupy less, while the included file management...

Binding CVE-2019-1040 vulnerability of the two domains provide the right depth of analysis-vulnerability warning-the black bar safety net

2019, 6 month, Microsoft released a security update. The update for CVE-2019-1040 vulnerability to repair. This vulnerability, an attacker could man in the middle attacks, bypassing the NTLM MIC（message integrity check protection, the authentication traffic is relayed to the target server. Throug...

Related vulnerabilities have now been patched: the Orvibo smart home devices disclosure of user information-bug warning-the black bar safety net

From Orvibo aspect to understand, this relates to the information disclosure of the security vulnerability has now been fixed, and the user information of the protection level, at the same time they also want and professional information security research team into cooperation with the protection...

Can lead to millions of player accounts to be hijacked: EA Games account hijacking vulnerability analysis-vulnerability warning-the black bar safety net

One, overview In the past few weeks, Check Point Research and CyberInt common to confirm a series of vulnerabilities, and these vulnerabilities once an attacker might cause the world's second-largest game company EA Games to millions of players accounts being taken over. At the same time, these...

Than Mirai botnet and BrickerBot more powerful IOT killer app still appeared. Behind the developer was actually a 14-year-old Sao years! - Vulnerability warning-the black bar safety net

! A new malicious program is through the destruction of the IOT device firmware and let them completely into“bricks”, which is similar in 2017, the destruction of millions of devices BrickerBot malicious programs. This malicious program is known as Silex, which by destroying the IOT devices of th...

Zhiyuan OA A8 Getshell vulnerability alerts-a vulnerability alert-the black bar safety net

Recently, 360CERT monitoring to Zhiyuan OA A8 system there is a remote Getshell vulnerabilities, has been in the field use. Zhiyuan OA A8 is a popular collaborative management software, in the medium and large business institutions widespread use. 0x01 vulnerability details Zhiyuan A8+ some versi...

Zhiyuan OA arbitrary file write vulnerability-vulnerability warning-the black bar safety net

One, Foreword Zhiyuan OA system by the Beijing Zhiyuan Internet Software Co., Ltd. development, is an Internet-based collaboration the collaborative management software in the enterprise agencies is widely used. Recent Zhiyuan OA system is broke there is an arbitrary file write vulnerability has...

Ann Day honey network capture“use of the ElasticSearch Groovy vulnerability Monroe coin(Dog)mining”event analysis-vulnerability warning-the black bar safety net

1, Overview 2019 6 May 13, Ann Day honey network capture to use CVE-2015-1427ElasticSearch Groovyremote command execution vulnerability attacks. The vulnerability principle is Elaticsearch groovy as a scripting language, and based on the use of black and white lists of the sandbox mechanism to...

Router 0day vulnerability discovery practical-vulnerability warning-the black bar safety net

! Last year 7 month in the company's internal share over this issue, said to also almost a year, too lazy to now only issued to. In 2018, 3, 4 on more than two or three months time, spent more and more time to engage in a domestic router, dug some holes, after also don't get it. Also wrote a litt...

Dell pre-installed SupportAssist components DLL hijacking vulnerability, worldwide more than 1 billion devices face a cyber-attack risk-vulnerability warning-the black bar safety net

SupportAssist is a powerful support application helps to ensure that the user of the system is always running optimally, take the initiative to find the problem and allows you to run the diagnostic program and the driver update scan. Recently, however, researchers have found that this tool softwa...

TP-Link Wi-Fi extender remote code execution vulnerability analysis-vulnerability warning-the black bar safety net

WiFi extender can enlarge the WiFi signal, mainly used for large or multi-storey residential, and the router signal can not cover the family's case. The extender's principle is from the main router to get a WiFi signal, and broadcast channel other WiFi signal weak or no signal area. IBM X-Force...

Not to ignore the printer vulnerability research-exploit warning-the black bar safety net

0×01 Preface After a recent period of time of the test, found within the enterprise network printer there are a variety of vulnerabilities, but also often been ignored, hence this article's research. When a printer connected to the network, you can conduct a port scan, read and write to upload a...

Chakra vulnerability debugging notes 1--ImplicitCall-vulnerability warning-the black bar safety net

Chakra is Microsoft's next-generation browser, Microsoft Edge the Javascript parsing engine, 继承自IE浏览器的jscript9.dll and on GitHub open source for ChakraCore it. Chakra since open source has become a Windows platform vulnerability discovery one of the main goals, is also everyone to learn binary...

TP-LINK Wi-Fi Repeater to a vulnerability that can be used for remote code execution-vulnerability warning-the black bar safety net

IBM X-Force researcher Grzegorz Wypych recently issued a warning that some of the TP-Link Wi-Fi Repeater devices there is a serious remote code execution vulnerability, the vulnerability can lead to external attackers access device privileges and execute arbitrary commands. ! IBM Security section...

CVE-2019-11477: Linux kernel TCP SACK mechanism remote Dos early warning analysis-vulnerability warning-the black bar safety net

0x00 vulnerability description 2019 6 May 18, RedHat official website released a report: security researchers in the Linux kernel handles the TCP SACK data packet module found three vulnerabilities, the CVE number for CVE-2019-11477, CVE-2019-11478 and CVE-2019-11479, wherein the CVE-2019-11477...

WebLogic Server re-aeration at high risk 0 day vulnerability-a vulnerability warning-the black bar safety net

6 May 11, Ali cloud security team found WebLogic CVE-2019-2725 patch to bypass the 0day vulnerabilities, and First Time reported in Oracle official, 6 January 12, get Oracle official confirmation. Since Oracle has not yet released an official patch, vulnerability details and real PoC are not...

The Evernote Chrome extension vulnerability analysis-vulnerability warning-the black bar safety net

! 0x00 Preface 2019, 5 months, Guardio research team discovered Evernote Web Clipper Chrome plugin a serious vulnerability. This is a logical flaw, an attacker can take the destruction domain isolation mechanism to the user identity to execute code, and ultimately to access sensitive user...

WebLogic deserialization 0day vulnerability CVE-2019-2725 patch to bypass）early warning-vulnerability warning-the black bar safety net

2019 06 May 15, 360CERT monitored in the field of Oracle Weblogic remote deserialize command execution vulnerability, the vulnerability to bypass the latest Weblogic patch（CVE-2019-2725, the attacker can send a carefully constructed malicious HTTP request, unauthorized remote execution of command...

Using the Slack app to steal Slack user to download file-vulnerability warning-the black bar safety net

! In this paper, Tenable security team researcher David Wells share the Windows version of Slack Terminal application of a vulnerability, through the Slack download function use, you can control the Slack of the victims of the downloaded file is stored is provided, indirect the secret to steal th...

For a suspected CVE-2016-0189 the original attack sample debugging-vulnerability warning-the black bar safety net

Last year at the end of 10, I get a public view is not quite the same as CVE-2016-0189 the use of samples. Preliminary analysis, I think this should be the year CVE-2016-0189 of the original Attack File. Its confused approach and subsequent occurrence of CVE-2017-0149, CVE-2018-8174, CVE-2018-837...

CVE-2019-10149: the Exim remote command execution vulnerability and early warning analysis-vulnerability warning-the black bar safety net

Recently, security researchers found the Exim mail server there is a remote command execution vulnerability, the vulnerability number CVE-2019-10149 it. The vulnerability in the default configuration may be a local attacker to direct the use, by low-privileged user to execute root command, a remo...

We can control you see the content: mainstream IPTV remote code execution vulnerability analysis-vulnerability warning-the black bar safety net

About a year ago, Check Point Research Team found that the Ukrainian TV streaming platform, there is a serious vulnerability, once exploited, could enable service providers face a serious risk. Specifically, an attacker can get the entire customer database of personal information and financial...

The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net

This article is for me at Bluehat Shanghai 2019 presentation of an extended summary. In this article, I will summarize the 2010 to 2018 years of Office-related 0day/1day vulnerability. I will be for each type of vulnerability do once carded, and for each vulnerability related to the analysis of t...

Smart TV and then exposed vulnerabilities--Supra Smart Cloud TV vulnerability can cause the device to be hijacking-vulnerability warning-the black bar safety net

An attacker can take advantage of a smart TV vulnerability, the attack connected to the home router to get remote access. Supra smart TV in a not patched the vulnerability so that the same Wi-Fi network, the attacker can hijack the TV device, play their own content, such as a fake emergency...

GeForce Experience OS command injection-vulnerability warning-the black bar safety net

0x01 vulnerability overview In this article, I will share how I found to be the use of NVIDIA GeForce Experience GFEto cause remote code execution vulnerability, the version number is less than 3. 19 of the GFE are the presence of the vulnerability. This vulnerability is assigned the ID:...

Influxdb authentication bypass vulnerability alerts-a vulnerability alert-the black bar safety net

0x00 vulnerability background 2019 5 December 31, 360CERT monitoring to the @Moti Harmats in Komodosec released InfluxDB database authentication bypass vulnerability details. A malicious attacker can easily obtain a complete database of control permissions, you can optionally perform CRUD...

Alert Windows RDP remote vulnerability POC propagation-vulnerability warning-the black bar safety net

! 0x00 description 2019 5 August 31, 360 is detected on github someone posted a lead to a remote denial of Service POC codehttps://github.com/n1xbyte/CVE-2019-0708and for windows server 2008 R2 x64 demo video, the proven POC code real and effective. An attacker can use to spread the code of the...

CVE-2019-8603: Safari sandbox escape&LPE in-depth analysis-vulnerability warning-the black bar safety net

In this article, we will be on the vulnerability, CVE-2019-8603 analysis. In short, this is a present in the Dock and com. apple. uninstalld services in a heap out of bounds read vulnerability, the vulnerability will cause the attacker to call CFRelease and in macOS implemented on a Safari sandbo...

Not to fix the vulnerabilities will affect all Docker versions-vulnerability warning-the black bar safety net

All versions of Docker are currently vulnerable to a“race condition”attacks, such attacks may allow an attacker to host any file on the system has read and write access permissions, the proof-of-concept code has been released. The vulnerability is similar to CVE-2018-15664, it is a hack to provid...

Router vulnerability mining of the DIR-815 stack overflow vulnerability analysis-vulnerability warning-the black bar safety net

This time the author to reproduce a more classic stack overflow vulnerability: D-link dir-815 Stack Overflow. In fact this router is the stack overflow vulnerability of the use of ways and before DVRF drone platform-Stack Overflow examples of the same, just need to note down some of the smaller...

Linux lxd mention the right vulnerability analysis using vulnerability warning-the black bar safety net

The core lies in the use of the way, relatively new, not sentence by sentence translation, to ensure that the core point of the presentation is clear, and reproducing the entire Use process. lxc（Linux containers, the Linux that comes with the container; lxd is simply put, the LXD is a Provides RE...

Smart door lock security who come to tube? Yale and the cover Terman smart locks 0 day vulnerability exposure! - Vulnerability warning-the black bar safety net

With the continuous development of technology, smart home has been popular to people's Lives, Where smart locks product the majority of consumers like. From now on never go out forget to bring the key to the troubles, however the convenience of the smart lock products really safe? Today, the Smar...

Talking about the URI Schemes of use-vulnerability warning-the black bar safety net

In the past month or so, I spent a lot of time to read and test custom URI Schemes to. As my previous post mentioned, not properly implemented a custom URI there may be many security issues. I mentioned“many”of the word, here I want to EA Origin client, for example, to share with you this aspect ...

Wary of the use of the Office vulnerabilities to spread commercial spyware AgentTesla-vulnerability warning-the black bar safety net

Background overview AgentTesla was originally a released in 2014 the simple key loggers, and in recent years its development team which constantly adds many new features, and sale. AgentTesla has now become a commercial spyware that can be controlled by the end of the generation to meet the...

Android and iOS devices the fingerprint recognition technology vulnerability exposure, the vulnerability is almost impossible to control it! - Vulnerability warning-the black bar safety net

! According to the U.S. technology media ZDNet reported that a new device is fingerprint recognition technology the vulnerability you can use the factory settings detailed sensor calibration information, the tracking on the Internet Android and iOS devices, any app or website can be in the absenc...

Win 10 scheduled tasks local elevation of privilege 0 day POC-exploit warning-the black bar safety net

! The exploit is since last 8 months from security researchers SandboxEscaper found the first 5 Windows exploits. SandboxEscaper the use of the exploit can be a local elevation of privilege, access to SYSTEM and TrustedInstaller and other privileged users of the Spa's full control. The timing of...