The U.S. Department of Energy's security threat intelligence use cases for Flexible Transform-vulnerability warning-the black bar safety net

2015-01-07 2 2:0 5 ! Slide 1 Recently will continue to share the collection to the security threat intelligence-related material, the first a first to a U.S. Department of Energy's security threat intelligence practice. Security threat intelligence technology in the United States has been widely...

In-depth understanding of Google and Microsoft's controversial vulnerability: NtApphelpCacheControl vulnerability analysis-vulnerability warning-the black bar safety net

Causes:the The Google Project Zero team of budding member James Forshaw in 9 month 3 day 0 to Microsoft submitted the name“Windows: Elevation of Privilege inahcache. sys/NtApphelpCacheControl”security issues, and in Google's vulnerability disclosure period 9 0 days after, that is, 2 0 1 4 years 1...

NtApphelpCacheControl vulnerability detailed in-depth analysis-vulnerability warning-the black bar safety net

Causes: a Google Project Zero team of budding member James Forshaw in 9 month 3 day 0 to Microsoft submitted the name“Windows: Elevation of Privilege in ahcache. sys/NtApphelpCacheControl”security issues, and in Google's vulnerability disclosure period 9 0 days after, that is, 2 0 1 4 years 1 2...

Android browser cross-domain data theft, and the Intent of the Scheme to attack-vulnerability warning-the black bar safety net

We next want to introduce this vulnerability, which affects versions of Android 4. 4 The following comes with the browser and some other specific Android browser, which allowed hackers to read the sqlite format of the cookie database file, thereby stealing cookies. Along with this problem, we hav...

Samsung KNOX remote silent installation vulnerabilities in-depth analysis of the report-vulnerability warning-the black bar safety net

Vulnerability sources 1 1 In mid-May, the Samsung phone is a foreign security researchers exposed a serious security vulnerability,the vulnerability affects the Galaxy S5,S4,S4 mini,Note 4,Note3 and Ace 4 supports knox, a full line of Samsung phones, part of the GalaxyS5, and the Note 4 has been...

Excavations and the use of ntpd vulnerability-vulnerability warning-the black bar safety net

0x01 description A few months ago, I decided to start doing fuzzing it. I chose the Network Time Protocol the Network Time Protocol, NTP is the reference implementation of ntpd as my first target, because I have NTP some of the background knowledge, while this Protocol seems very simple, can be...

Google found Windows 8.1 0day vulnerabilities and published vulnerabilities verify program PoC-the exploit-warning-the black bar safety net

Google security researcher found a Windows 8.1 privilege escalation vulnerability, the attacker can use the vulnerability to modify the system content and even completely control the victim computer. Currently Google has announced a vulnerability in the authentication program, the PoC Airport. Po...

Cool official silent install apk features background the presence of high-risk vulnerabilities(demo custom machine is how in your phone silently installed)-bug warning-the black bar safety net

Cool Demo junk software is how to through your mobile phone to silently install Suction fee software what is going on. You charge less? Detailed description: Cool a operation and maintenance improper shell. ! ! ! ok See under background: http://auth.coolyun.com ! Background PUSH features APK sile...

Tencent QQ browser IOS version of the URL spoofing vulnerability-vulnerability warning-the black bar safety net

QQ browser for ios will be in the page title of the body displayed on the address bar, that URL spoofing greatly reduce the cost, may indirectly cause the user to suffer from phishing attacks. First construct a and mail. qq. com approximate domain name, POC at the following address: code area...

SQL Server stored procedure Hacking（II）of the user to impersonate-vulnerability warning-the black bar safety net

Security pulse in the before provides SQL Server stored procedure Hacking series the first portion of the SQL Server stored procedure Hacking I of trusted database, now to translate the SQL Server stored procedure Hacking（II）of the user to impersonate on Application developers often use SQL Serve...

2 5 2 9 net Union the use of the latest ie vulnerability mandatory installation of light micro-end-bug warning-the black bar safety net

I'm using Baidu browser ie compatible mode to browse http://www.dy2018.com this movie site, and found that somehow run the one called“Shine micro-end”of the game client, then I used smartsniff packet capture analysis, in the view source when the found a 2 5 2 9 net Union js advertising code, whic...

A school website system there is a file include vulnerability-the ASP language practical auditing-vulnerability warning-the black bar safety net

From the official site to download the latest system Then with a small cyclone to build local asp environment. In the review of this file. Saw the beginning of the 1-2 line !-- include file="inc/config. asp" - !-- include file="inc/conn. asp" - there's a file contains. Then I looked under the...

About lei division(NetCore)full-series routers in the“suspected Backdoor”program-vulnerability warning-the black bar safety net

See the recent router Backdoor most is a built-in super password, you can log in directly to the routing management background, or a background on the FTP, it can be any file uploading and downloading, etc., then there is the presence of some very obvious”flaws”, these barely also said in the pas...

WSS is the latest version of any user of the password reset（official demo demo-the vulnerability warning-the black bar safety net

WSS latest version of the design flaws lead to arbitrary user password reset, including the administrator 文件 usereditpassword.php code area ? php $editFormAction = $SERVER'PHPSELF'; if isset$SERVER'QUERYSTRING' $editFormAction .= "?" . htmlentities$SERVER'QUERYSTRING'; $password = "-1"; if...

Steal Facebook user information: using Android same origin policy vulnerability a malicious application is found-vulnerability warning-the black bar safety net

A few months ago we studied the Android same origin policy（SOP）of vulnerability, however recently there has been a use of this vulnerability to Facebook user attack a malicious application, which utilizes code based on the disclosed Metasploit test code. myhack58 science: the same-origin policy...

JEECMS arbitrary File Download lead to sensitive information disclosure-vulnerability warning-the black bar safety net

Should be JEECMS old version inurl:download. jspx? path= Arbitrary File Download download. jspx? fpath=WEB-INF/web. xml&filename=WEB-INF/web.xml Case 1 www.xxczj.gov.cn/download.jspx?fpath=WEB-INF/web.xml&filename=WEB-INF/web.xml ! tick. png Case 2...

Bypass 3 6 0 core crystal engine again forced the end of the 3 6 0 process(x64)-vulnerability warning-the black bar safety net

Bypass 3 6 0 core crystal engine again forced the end of the 3 6 0 process, in the face of success, The morning presented a 6 4-bit lower kill360 small toys But it wasn't long before I was hit the face. 3 6 0 say that there is a core crystal engine. We first do not say this T coax coax contraptio...

Free open source photo album Piwigo<= v2. 7. 1 SQL injection vulnerability analysis-vulnerability warning-the black bar safety net

Some time ago a free open source photo album Piwigopwigo apiwigo = 2.6.0 sql injection vulnerabilitythe. Vulnerability published, piwigo has been updated to 2. 7. To 1. However, this vulnerability published time is indeed a genuine 0day, the impact of piwigo full version. The following was on the...

IE vulnerability commissioning of CVE-2 0 1 3-3 8 9 3-vulnerability warning-the black bar safety net

Introduction Windows platform vulnerability discovery, and security research, IE is always not open around the topic. IE vulnerabilities just like the adobe series like Classic, is learning to exploit, the shellcode and the perfect way. On the IE vulnerability, the UAF IE Use-After-Free is the mo...

For patch NTP-Network Time Protocol vulnerabilities, Apple released the first Auto-Update Patch-vulnerability warning-the black bar safety net

Last night, Apple released its first automated patch, used to repair Appleoperating systemon the keyNetwork Time Protocol（NTP）vulnerabilitiesthe. The patch can be automatically patched, and does not require the user to restart the operation. NTP Network TimeProtocol, the Network Time Protocol, is...

About. git/config file leaked use-vulnerability warning-the black bar safety net

The beginning is also from the dark clouds that have such a vulnerability, many do not understand the might see on will feel a little confused, in fact, this vulnerability and svn leakage there is so little similar, can also according to the configuration file to restore the entire project proces...

From the source perspective on the ntpd stack buffer overflow vulnerability(CVE-2 0 1 4-9 2 9 5)analysis-vulnerability warning-the black bar safety net

Recently, the ntp's official website released a Update Patch: A total of 6 vulnerabilities 4 CVE number, both of Google Security Team found and submitted. Wherein the CVE-2 0 1 4-9 2 9 5 includes a 3 stack overflow: a This article from the source code perspective, these three stack overflow,...

A user is a particularly large amount of educational classes CMS arbitrary File Download-vulnerability warning-the black bar safety net

Vulnerabilities page: http://www.hbycscjzx.com//OperationManage/DownFile.aspx First register a regular account In personal writing news, when inserted into the attachment capture. You can see the following content code area POST /OperationManage/DownFile. aspx HTTP/1.1 Host: www.hbycscjzx.com...

The SS7 Protocol exposure vulnerability, stop using your phone-bug warning-the black bar safety net

Recently, the German researchers discover SS7 Protocol there is a huge security vulnerability that can lead to the user's telephone and SMS data were subjected to massive eavesdropping and theft, and more terrible is, even when using the latest cellular network and the most advanced encryption...

Analysis of exploit kits（EXP）family members Archie and Astrum-vulnerability warning-the black bar safety net

Exploit kits（EXP）has been spread crimeware important tool. As the saying goes, know ourselves victorious, as security researchers, we must fully understand and analyze them. This article will introduce two of the latest popular Tools Pack-Archie and Astrum. Archie kit Archie kits in 8 months has...

Mac EFI is exposed a major security vulnerability by Thunderbolt devices to spread malicious programs-vulnerability warning-the black bar safety net

Next week, Germany at the Chaos Communication Congress Security Conference, a researcher Trammell Hudson will present a new method, through the unique production of Thunderbolt devices in the Mac EFI boot firmware in the injection almost impossible to not remove the Bootkit virus. The exploits of...

The SS7 network to save significant vulnerability that everyone can monitor mobile phones-vulnerability warning-the black bar safety net

Recently, German researchers found that the mobile security vulnerabilities these vulnerabilities enable hackers, spies and criminals take advantage of, you can large-scale wiretapping of private telephone and steal a mobile phone short message, even if the mobile phone network using the current...

An open source CMS to bypass the filtering XSS comfortably+getshell（viagra, the Shaolin Temple official website of the shots-the vulnerability warning-the black bar safety net

Brief description: I haven't at the front Desk too.。。。。 Powered by YIQICMS “Baidu for you to find relevant results about 1 7 2 0 0” Viagra official website shot Detailed description: The latest version 1. 8, The 首先 关注 /comment.php: code area if$action == "save" $msgtitle = $POST"msgtitle"; $msgna...

Delta is the aeration system vulnerabilities to others may access your boarding pass information-vulnerability warning-the black bar safety net

In recent years, the airline piloting through smartphone or tablet and other mobile devices to achieve boarding procedures, which is expected in the future to truly achieve the paperless. But in the project the initial stage of the natural presence of various problems, 1 2 November 1 6, one of th...

Vulnerability warning: doom cookie Misfortune Cookie vulnerability affects the global 1 2 0 0 million router-vulnerability warning-the black bar safety net

One called“doom cookie Misfortune Cookie”a serious vulnerability is affecting the global 1 2 0 0 million router security, D-Link, TP-Link, Huawei, ZTE and other brands are affected, the attacker can use a vulnerability of remote control devices and monitoring traffic. Learn about the“doom...

Vulnerability alert: Google security researchers discovered NTP-Network Time Protocol the latest vulnerability-vulnerability warning-the black bar safety net

Google security researchers recently discovered, NTP Protocol, the Network Time Protocol, there have been some new serious vulnerabilities, NTP 4.2.8 prior versions are affected, a hacker can exploit these vulnerabilities to expand the remote attack. NTP 4.2.8 previous versions are affected The N...

Global mobile security vulnerabilities“for the benefit of the”hack-vulnerability warning-the black bar safety net

German researchers said that global mobile phone operators the use of a system security vulnerabilities allow hackers to large-scale monitoring of mobile phone users traffic as possible. This security issue relates to the distribution standard system Signaling System 7, or SS7 in. The system is...

A EXCEL the vulnerabilities the sample shellcode analysis-vulnerability warning-the black bar safety net

0x00 causes Recently I got a EXCEL samples, allegedly an over-all anti-virus of 0day, after the analysis after a let me disappointed, this is a 2 0 1 2-year old vulnerability, not 0day the. Although not picked to the 0day, but this sample of shellcode is still quite distinctive, it is indeed...

Cellular communications network discovery security vulnerabilities allow others to monitor the dead calls or intercept text messages-vulnerability warning-the black bar safety net

German researchers in a cellular communication network widely used on the VII signaling system SS7, Signaling System Number 7 on the discovery of a security vulnerability, allowing spies, hackers and criminals potential large-scale monitoring of private phone calls and intercept text messages...

Git client vulnerability is discovered affecting Windows and OS X versions-bug warning-the black bar safety net

Git project release Git v2. 2. 1, The fixed a effects Windows and Mac OS X client security vulnerabilities. Linux, although not affected, but if the Linux hosting services with Windows and OS X user, so as to protect the user Best or to upgrade to the latest version. Issues related to...

Ghosts, goblins Grinch: Bash broken shell shellshock a more serious Linux vulnerability-vulnerability warning-the black bar safety net

Security researcher at the Linux operating system found in a group called the ghosts, goblins（Grinch's vulnerability, the vulnerability exists in the linux system, and Bash broken shell shellshock）vulnerabilities in victim machines to get the highest permissions. Ghosts, goblins overview Bash...

Cool was traced to the presence of a backdoor threat to millions of users information security-vulnerability warning-the black bar safety net

Recently, security research firm PaloAlto Networks found that the domestic mobile phone manufacturers coolpad Android phone install the one named“CoolReaper”a backdoor program that may be related to more than 1, 0 0 0 million users of information security. ! Kupa was traced to the presence of a...

Industrial safety: BlackEnergy（dark）the use of the Siemens WinCC system has been repaired loopholes to launch attacks-vulnerability warning-the black bar safety net

Researchers recently found that the malware BlackEnergy（dark forces are using Siemens SIMATIC WinCC（Siemens the most classic process monitoring system has been repaired loopholes to re-attack the SCADA HMI system. ! Comeback: the BlackEnergy then update the BlackEnergy（dark）is an automated networ...

The Beijing subway system exposed vulnerabilities hackers can disrupt subway run-vulnerability warning-the black bar safety net

Security expert@Zhao Wu 3 6 0 today in micro-blog revealed that the Beijing subway official backstage management system loopholes that hackers can invade the background control subway lines, the official live and other important information. Beijing Metro official microblogging response has been...

Hidden in the Share button in the attack: Blogger. com exposure of high-risk CSRF（cross-site request forgery）vulnerability-vulnerability warning-the black bar safety net

The Egyptian security expert Mazen shows Gamal Mesbah on Blogger. com found a high risk of CSRF（cross-site request forgery）vulnerabilities. The vulnerability can allow an attacker in blogger without the knowledge of writing and publishing blogs, while the private blog public. Blogger is Google's...

Mango cloud KODExlporer information leak+arbitrary command execution getshell(a-vulnerability warning-the black bar safety net

Do you want to blast your entire chrysanthemum it??? I take it slow and... Don't be afraid to hurt it. Give up Detailed description: Code I from official website next. Dog brother, waiting for the Universal rewards. I don't have how analysis, own download sets of source code to build it! I don't...

Android system is the presence of the cross-signed certificate vulnerability can lead to system crash-vulnerability warning-the black bar safety net

Overview Trend Micro found the Android system in the presence of a cross-signed certificate handling vulnerabilities. Currently the Android version still does not correctly handle these certificates. When two certificates with a loop certificate chain the certificate of A signature certificate...

8 0% Vientiane network management there is a default database password can penetrate the entire cafe-vulnerability warning-the black bar safety net

Internet cafe database there is a default sa password can modify the data can be remotely executed command, and may penetrate the entire cafe It seems like a very old vulnerability, but now most of the Internet cafe or can use Detailed description: Vientiane database default password Account: sa...

Oracle database vulnerability analysis: the need for a username and password to access your database-vulnerability warning-the black bar safety net

Summary General database vulnerabilities that are in a successful connection or login to the database after the invasion; this article describes two in 2 0 1 2 years of exposure to the Oracle, by these two vulnerabilities combined may not grasp the username/password of the case of the invasion of...

Woven dreams somewhere a design flaw resulting in a background address leak-vulnerability warning-the black bar safety net

Brief description: Somewhere a design flaw, the program for some of the things the filter is not strict, resulting in a background address the leakage, the test only had 5. 7 in. Visual other version of the same problem. Detailed description: ! QQ screenshot 2 0 1 4 0 9 1 8 2 1 4 4 2 6. png DEDEC...

APK signature verification bypass-vulnerability warning-the black bar safety net

0x01 Android signature mechanism The APK rename it to zip file, then you can see there's a META-INF folder, inside there are three files, called MANIFEST. MF, CERT. SF and CERT. RSA, which is to use signapk. jar to generate the signature file. 1, the MANIFEST. MF file: The program loops through t...

Burrow position: special upload tips, bypassing the PHP picture Converter to achieve remote code execution RCE-a vulnerability warning-the black bar safety net

I use a special image upload tips, bypassing the PHP GD library for image conversion processing, and ultimately successfully achieve remote code execution. The way it is. I was testing the site on whether there is asql injectionvulnerabilities, inadvertently I'm on the site personal page found a...

ThinkOX full version through the kill 0day-vulnerability warning-the black bar safety net

Affected versions: ThinkOX the full version of the pass to killonethink and thinkphp framework may be affected, particularly too lazy to do it, who are interested in your own analysis. Vulnerability description: Through a dynamic caching mechanism, the input illegal content. Malicious execution o...

Yahoo security team: a vulnerability 9 0 days without repair, open to the public details-vulnerability warning-the black bar safety net

Yahoo security team start to use with Google Project Zero, as the vulnerability disclosure policy--in the vulnerability information to notify the affected vendor of 9 0 days, the external disclosure of vulnerability details. The black bar safety net science: on the Google Project Zero Google...

POODLE vulnerability comeback, the impact of the TLS secure transmission protocols-vulnerability warning-the black bar safety net

! The Google security team in October found that a high-risk SSL vulnerability POODLE, now it a comeback, this time it is SSL upgrade version-the TLS Protocol. POODLE（Padding Oracle On Downgraded Legacy Encryption）vulnerabilities that had affected the most widely used Encryption Standard-SSL v3. ...