Oracle Java and the Apache Xerces PDF/Docx Server DDOS vulnerability-vulnerability warning-the black bar safety net

One, flaws summary Oracle Java JDK/JRE（1.8.0.131 and earlier versions of the package and the Apache Xerces（2.11.0 version, there are two flaws, two flaws were: The Oracle JDK/JRE and-rebuff-do（DoS）flaws java. net. URLConnection not apply setConnectTimeout when and-rebuff-do. Oracle has received t...

Hot air classes on the site of the SQLi and XSS vulnerabilities bug-vulnerability warning-the black bar safety net

Last month in order to practice hand, I choices one of the more popular sites goodwesite.com as I penetrate the leaking test tool. In flaws in the excavation process, I've invented the Web PresenceSQL injectionandXSSflaws. The official start of the article content, let's first briefly understand...

See how I discovered a hot spot on the site of the SQLi and XSS flaws-vulnerability warning-the black bar safety net

In the last month of the usual burrow of the process, I invented a After a very hot airline website, and the website, in the invention, several peace flaws. Because this website has yet to be established subsurface flaws winning planning, to is we 未便 this leak of the website is really identity,...

Stack overflow in PlugX RAT-vulnerability warning-the black bar safety net

Black Hat USA 2017@professorplum share a few rare RAT（Xtreme, the PlugX And Gh0st in the presence of flaws, the application of these flaws to be able to reverse the onslaught of C&C Server, here in the PlugX RAT, for example, to stop flaws in elucidating it. 1. Flaws elucidating 1.1 Delphi ! Plug...

The four mainstream Android phone manufacturers the BootLoader in the presence of multiple flaws vulnerability-vulnerability warning-the black bar safety net

University of California, Santa Barbara 9 the researchers found that the four mainstream chip manufacturers of the Android bootloader component the presence of multiple vulnerabilities. These vulnerabilities can lead to the phone chain of trust during the boot process is compromised, so that the...

Talking about the struts2 in the history of high-risk vulnerabilities-vulnerability warning-the black bar safety net

Apache Struts2 as the world's most popular Java Web framework of meaning, widely used in teaching, Finance, Internet, communications and other nervous industry. It's a high-risk flaws persecution can perhaps form a significant Internet Safe the dangers and huge economic loss. This article is...

To DVRF（router flaws drone as an example the interpretation of JEB firmware flaws applications Part 1-the vulnerability warning-the black bar safety net

A, media In this series of articles, I will send everyone to the presentation if any application JEB MIPS Decompiler1to find and the application of the embedded equipment software flaws. In order to accomplish this obligation, we need to apply the Praetorian supplied to the DVRF（Damn Vulnerable...

XMLDecoder deserialization vulnerability-vulnerability warning-the black bar safety net

Java misappropriation XMLDecoder parse the XML file moment, the presence of the password run the exploit. The sample XML file shown below: xml version="1.0" encoding="UTF-8"?& gt; java version="1.8.0131" class="java. beans. XMLDecoder" object class="java. lang. ProcessBuilder" array class="java...

Hackers steal Instagram account information success of the current exploits have been patched-vulnerability warning-the black bar safety net

Today Instagram announced that there are at least a hacker be able to steal well-known user accounts personal information, such things happen mainly because the system has loopholes, and now the vulnerability has been fixed. Instagram representatives said in a statement:“we recently discovered...

Twenty-two brand router vulnerability Distribution Report-vulnerability warning-the black bar safety net

Now, with cybercrime techniques to constantly renovate our home router has also recently become a cyber-attack new target. In fact, home routers indeed there are a lot of security vulnerabilities. Álvaro Folgado Rueda and many other network security experts recently wrote a report, in-depth...

The WireX Botnet warning Bulletin-vulnerability warning-the black bar safety net

2017 8 May 17, named WireX BotNet the botnet by masquerading ordinary Android applications the way a large number of infected Android devices and launched a large-scaleDDoSattack, this caused a portion of the CDN provider's note, and thereafter from Akamai, Cloudflare, Dragon Age, Google, Oracle...

The two did not repair the vulnerabilities affect the mainstream browser extension system-vulnerability warning-the black bar safety net

Security researchers found that the two did not fix the vulnerability embedded in many mainstream browsers in the expansion of the system, such as Firefox, Safari, and all with Chromium related browsers such as Chrome, Opera, etc. ! An attacker can exploit these vulnerabilities expose the user of...

The Intel processor is now a security vulnerability: it can be used by hackers as a backdoor-a vulnerability warning-the black bar safety net

Recently, in Moscow security research Positive Technologies report notes that the Intel Management Engine 11 There is the death of button, can be used by hackers to steal. Management Engine Management Engine is Intel a Firmware Interface for processors and peripheral chip for communication, therm...

Your iPhone7 jailbreak? iOS10 reproduce the vulnerability, the no jailbreak hack said count-vulnerability warning-the black bar safety net

In iOS10 official version released soon after, we saw many third party features on the iPhone can be achieved, the original closed Apple system more and more humanized, once with Cydia developers, announced that iOS no longer need to jailbreak, it can be said that Apple is the perennial stick wit...

The researchers published the iOS kernel exploit code-exploit warning-the black bar safety net

From the mobile security company Zimperium researchers Adam Donenfeld published zIVA kernel exploit program PoC code. zIVA affect iOS 10.3.1 and prior versions, an attacker can by zIVA using the code to get any read-write and root access. Apple 5 months to fix the vulnerability Apple to 5 months ...

7z's LZMA compression algorithm with Bitdefender heap buffer overflow vulnerability-vulnerability warning-the black bar safety net

Previously, in order to write that article about 7z PPMD compression algorithm vulnerability of the articles, I read a lot of the 7-Zip source code, and found a lot of very valuable information, this information can better help my analysis of anti virus products, vulnerability in it. So, I'm read...

CVE-2017-8625: use a custom CHM file to bypass the Windows 10 Device Guard-vulnerability warning-the black bar safety net

Device Guard is what? Device Guard will Windows 10 operating systemis limited to run only by the trusted person who signed the signature of the application program, this function helps protect against 0day attacks, and also can effectively deal with a polymorphic virus challenge. It is a hardware...

lighttpd domain processing denial of service vulnerability environment from the reproduction to the analysis-vulnerability warning-the black bar safety net

A． lighttpd domain processing denial of service vulnerability of the environment to build 1 Install lighttpd Because this vulnerability requires that a fixed version,so we need to manually install. wget http://download.lighttpd.net/lighttpd/releases-1.4.x/ lighttpd-1.4.31.tar.gz tar-zxvf...

Discuz X3. 3 patch security analysis-vulnerability warning-the black bar safety net

Discuz official in 2017 8 May 1 release of the latest version of the X3. 4 version, the latest version fixes multiple security issues. 360CERT and 360 0KEE Team then for the events to follow. 0x01 vulnerability overview 360CERT and 360 0KEE Team by comparing DiscuzX3. 3SCUTF8 with DiscuzX3. 4SCUT...

How to detect and guard based on the CVE-2017-0005 vulnerability of elevation of privileges attack-vulnerability warning-the black bar safety net

One, Foreword 2017 3 on 14 September, Microsoft published a security Bulletin MS17-013, fixes CVE-2017-0005 vulnerability. CVE-2017-0005 vulnerabilities in Windows Win32k Assembly, an attacker using this vulnerability could achieve elevation of Privilege. Partners according to credible reports, w...

In a remote sandbox, free to soar: Adobe Flash Windows user credentials disclosure vulnerability-vulnerability warning-the black bar safety net

One, Foreword Recently, I published about the Flash sandbox escape vulnerabilities of an article, The final result has survived ten years of the Flash Player local security sandbox died a natural death. Before this vulnerability to show us the input data to verify the correctness of importance. T...

Remember once for Twitter Periscope API interesting digging experience-vulnerability warning-the black bar safety net

! Recently, I was on Twitter the Periscope service found a loophole. This is a CSRF（cross-site request forgery）vulnerability, although this vulnerability is not considered high-risk vulnerabilities, but found that the vulnerability of the whole process I think is very worth to share with you. Jus...

Microsoft Word vulnerability: hackers can use the automatic update link to install the malicious software-vulnerability warning-the black bar safety net

According to foreign media news, the SANS Internet Center a freelance security consultant and Handler in Microsoft Word, found a very interesting vulnerability that allows an attacker to abuse the Word program to automatically update the link function. This is one of the default start function,...

Shocked! Google not going to fix the Chrome in the RCE vulnerability-vulnerability warning-the black bar safety net

Chrome 60 before all the old versions are affected by a remote code execution vulnerability. An anonymous researcher through Beyongd Security's SecuriTeam secure disclosure program will issue to inform Google. Google responded that it does not plan to solve this problem, because it does not affec...

Foxit PDF reader there 2 at high-risk vulnerabilities, the vendor has refused to fix? - Vulnerability warning-the black bar safety net

Use Foxit Foxit PDF reader's user to pay special attention to the security researchers which discovered two serious 0day vulnerability, such as not the reader is configured in the secure read mode open file, it would let the attacker on the target computer to execute arbitrary code. Foxit company...

How to use EternalRomance get Windows Server 2016 on the Meterpreter session-vulnerability warning-the black bar safety net

One, Foreword When Microsoft released MS17-010 vulnerability patch, people found this vulnerability affects from Windows 7 to Windows Server 2016 version of the Windows System more accurately say also contain a Vista system, but we will usually ignore this system. However, the shadow...

Travel to the dark of the door! Debugee in QEMU-vulnerability warning-the black bar safety net

I haven't to secure guest posting, just recently the contact vulnerability discovery, and have been reading some of the classic fuzzer source code, at the same time also began to contact the virtualization escape this piece of content, at this time happened to come across two very classic exploit...

CNNVD on the United States Netsarang company multi software the presence of malicious code briefings-vulnerability warning-the black bar safety net

Recently, the national information security vulnerabilities library CNNVD received about the the United States Netsarang company more software there malicious code in case the message send. The company Xshell And Xmanager remote connection use of the product nssock2.dll module in the presence of...

How to confirm Google the user's specific e-mail address-vulnerability warning-the black bar safety net

Recently I Google to report a security issues, this vulnerability would allow an attacker to confirm that a Web page visitor is logged in any Google service account, including GSuite account. ! According to my test results, the attacker can in every 25 seconds to confirm approximately 1000 e-mail...

Using Burp and a custom Sqlmap Tamper the use of secondary injection vulnerability-vulnerability warning-the black bar safety net

! The Web application already from on century a simple script evolved into today's single-page application. However, with the Web applications of increasing complexity of different types of security vulnerabilities also come with it. One is called the secondary injection vulnerability is a Web...

Well-known terminal simulation software, XSHELL, multiple versions exist the back door, or to upload user Server account password-loophole warning-the black bar safety net

Xshell is a powerful,famous terminal simulation software, is widely used for server operations and management,Xshell supports SSH, SFTP, TELNET, RLOGIN and SERIAL functions. It offers industry-leading performance and powerful function, in the free terminal emulation software has an irreplaceable...

Popular remote terminal management tool Xshell is implanted in the back door code, could lead to sensitive information disclosure-vulnerability warning-the black bar safety net

Recently, a very popular remote terminal Xshell is found to be implanted back door code, if the user using the Troy of the Xshell tool version may lead to sensitive information being leaked to the attacker the control of the machine. Xshell particular Build 1322 on the domestic use of the surface...

Then talk about CVE-2017-7047 Triple_Fetch and iOS 10.3.2 sandbox escape-vulnerability warning-the black bar safety net

Ian Beer@google released a CVE-2017-7047TripleFetch of exp and it is1, The chenliang@keenlab also published on TripleFetch analysis2, but due to this vulnerability and exp there are a lot of highlights, so also the remaining lot can dig deep into the details. Thus, our simple analysis of...

SSH command injection Vulnerability(CVE-2017-1000117)analysis-vulnerability warning-the black bar safety net

0x01 vulnerability overview A malicious person can through the ingenious structure“ssh://...”link, and let the victim in the implementation of the program, such as the case to access the malicious link, so as to achieve command execution purposes. The links can be placed in the git project...

Windows exploit techniques: from any directory you create to any file-read-vulnerability warning-the black bar safety net

One, Foreword In the past few months, I'm in meetings, introduced me to the“Windows logic privilege escalation guide”tips. Meeting length is only 2 hours, I would like to introduce many interesting techniques and tricks had to have been deleted. Over time, think in training courses complete about...

Oolong CVE-2017-8570 samples and behind the idea-vulnerability warning-the black bar safety net

The so-called CVE-2017-8570 sample Last week, 360 days eye lab found foreign hackers on Github released a CVE-2017-8570 exploits code, but then deleted, in order to find quite a few labeled as CVE-2017-8570 Office malware samples, such as the following VirusTotal is marked as CVE-2017-8570 sample...

More mainstream version control system was traced to the presence of the client arbitrary code execution vulnerability-vulnerability warning-the black bar safety net

Around the world programmers Please Note, You must now immediately updates your version control system, Git, SVN, Mercurial open-source version control system recently to fix critical security vulnerabilities, the delay in the upgrade, you will be affected by the vulnerability. More mainstream...

Java deserialization crisis has passed, this time to the is. Net deserialization vulnerability-vulnerability warning-the black bar safety net

2016 Java applications and developers by deserialization vulnerability to the devastating effects, and now . NET ecosystem also are suffering from the same crisis. A new problem exists in . NET code library to handle deserialization of operation, the attacker can also by this vulnerability in the...

The high-pass encryption and decryption engine to mention the right vulnerability analysis-vulnerability warning-the black bar safety net

CVE-2016-3935 and CVE-2016-6738 we found that the high-pass encryption and decryption engine Qualcomm crypto engine two mention the right vulnerability, respectively, in 2016, 10 months, and 11 on the Google android vulnerabilities list is publicly acknowledged, while the high-pass also in 2016,...

Kernel pool overflow exploit combat of Windows 10-bug warning-the black bar safety net

One, Foreword This is the kernel pool overflow exploit combat of Windows 7 throughout the sequel, we will be in the Windows 10 system to achieve the same exploits, it will be more challenging because of Microsoft ever since Windows 8 has taken a lot for the kernel pool attacks defenses. This...

Wolf in sheep's clothing: how to use the Windows icon to display the vulnerability disguise a PE file-vulnerability warning-the black bar safety net

One, Foreword Windows System icon to display the function in the presence of a vulnerability, exploit this vulnerability, the attacker may be from the local host to automatically “borrow“ other commonly used icons, use these icon camouflage PE file, thereby tempting the user to click on such a...

“The seismic network of the third generation”CVE-2017-8464 vulnerability analysis and early warning-vulnerability warning-the black bar safety net

Microsoft in the 2017 year 6 month patch patch a shortcut CVE-2107-8464 of vulnerability, the announcement says this vulnerability is the National background of network attacks the use to implement the attack, the vulnerability is also known as the seismic network of the third generation, recentl...

See my how-to the Apache fuzzing and dig to a value of 1500 knife of vulnerability-vulnerability warning-the black bar safety net

Target In the AFL in the view of the Apache httpd server's crash logs, I found a lot of problems. For example, some crash testing with example in fuzz testing tools internal collapse, but also affect the test program stability. In this article, I will talk to you to explain the test case to crash...

Office of the senior threat vulnerability in the wild use analysis-vulnerability warning-the black bar safety net

Office of the senior threat vulnerability background In the advanced threat attack, the hackers remote delivery invasion client the most like the vulnerability is office documents vulnerability in the just-concluded black hat conference, the best client security vulnerabilities award went to...

See how I integrated the use of 4 vulnerability GitHub Enterprise remote code execution-vulnerability warning-the black bar safety net

! Hello everyone, since the last vulnerability disclosure has been there for six months, in this article, I will show you how to through 4 vulnerability is the perfect realization of GitHub Enterprise RCE, the RCE to achieve a method and a server-side request forgery technology（SSRF）related,...

“The seismic network of the third generation”（CVE-2017-8464 several species using the method and prevention-vulnerability and early warning-the black bar safety net

As early as 6 May 13, Microsoft released patches to fix numbered CVE-2017-8464 vulnerability, a local user or a remote attacker can exploit this vulnerability to generate a specially crafted shortcut, and through a removable device or a remote shared way lead to remote code execution, Dating back...

CVE–2017–8543 Windows Search remote code execution vulnerability alerts-a vulnerability alert-the black bar safety net

Recently, 360CERT confirm the number CVE-2017-8543 Microsoft Windows Search serious vulnerability there is a remote attack the viability of the vulnerability being successfully exploited on Windows users have a serious security threat, this is again warning the use of Windows platform users...

Ford, BMW, Infiniti and Nissan TCU presence of a vulnerability, can be remote intrusion-vulnerability warning-the black bar safety net

! Three researchers found that Ford, BMW, Infiniti and Nissan Automatic Transmission Control UnitTCUin the presence of a vulnerability, these TCU are made by Continental AG production. Vulnerability causes The three researchers from McAfee, respectively, is Mickey Shkatov, Jesse, Michael and...

The U.S. Department of Justice is how to build a vulnerability disclosure plan framework-vulnerability warning-the black bar safety net

The U.S. Department of Justice（DOJ criminal sector of the network security division recently created the“online system vulnerability disclosure framework”, designed to help organizations develop a formal vulnerability disclosure program. ! In fact, now more and more business organizations have...

First only WiFi worms of the birth: a complete parsing Broadcom WiFi chip Broadpwn vulnerability to and including EXP / to POC-the exploit-warning-the black bar safety net

The past few months, Android and iOS, billions of devices are there have been terrible WiFi remote code execution vulnerability BroadPwn it. Google 7 early release a repair patch, and Apple is in the 7 on 19, released update. While the opening was in full swing the Black Hat 2017 on security...