Cloud Security

Remote buffer overflow vulnerability in Apple iTunes '. pls' fileRemote buffer overflow vulnerability in Apple iTunes '. pls' file Release date:Updated on:Affected Systems: Apple iTunes 10.6.1.7 Description: Bugtraq id: 74467ITunes is a digital

Multiple Asterisk products TLS Certificate verification Security Restriction Bypass Vulnerability (CVE-2015-3008)Multiple Asterisk products TLS Certificate verification Security Restriction Bypass Vulnerability (CVE-2015-3008) Release date:Updated

IOS security analysis on the mobile cloud storage service platform (Parse) Parse: A cloud platform that provides background services for mobile appsParse is a cloud computing platform incubated by YC to provide background services for mobile

Android browser cross-Origin data theft and Intent Scheme attacks The vulnerability we will introduce next affects self-built browsers and some other specific Android browsers in Android versions earlier than 4.4. It allows hackers to read cookie

Ao you Browser Remote Command Execution Vulnerability (browser design defect) When a user accesses a page maliciously constructed by an attacker, it can execute the remote command specified by the attacker. After the browser was submitted several

How to detect Mac infection by malicious software WireLurker Is your Mac infected by the malware WireLurker? Teach you how to detect Mac attacks. This morning, we reported the recent malware WireLurker targeting Apple device users. After the malware

Bash uses special environment variables for code injection attacks Bash or Bourne again shell is a UNIX-like shell script, which may be the most common installation component in any Linux system. Since its birth in 1980, bash has evolved from a

Apache Axis incomplete repair SSL certificate verification Bypass Vulnerability (CVE-2014-3596) Release date:Updated on: Affected Systems:Apache Group

Novell Data Synchronizer Mobility Pack Multiple Remote Security Vulnerabilities Release date:Updated on: Affected Systems:Novell Data Synchronizer Mobility Pack 1.1.2Novell Data Synchronizer Mobility Pack 1.1Novell Data Synchronizer Mobility Pack 1.0

SMC Networks SMC8024L2 Switch Web interface Authentication Bypass Vulnerability Release date:Updated on: Affected Systems:SMC SMC8024L2Description:--------------------------------------------------------------------------------Bugtraq id: 54390Cve

Cisco NX-OS MTS Remote Denial of Service Vulnerability (CVE-2014-2201) Release date:Updated on: Affected Systems:Cisco NX-OS 4.2 (6)Cisco NX-OS 4.2 (4)Cisco NX-OS 4.2 (3)Cisco NX-OSDescription:---------------------------------------------------------

Common HTTPS attack methods0x00 background Study common https attack methods Beast crime breach, and puts forward some suggestions for secure deployment of https Based on https features. HTTPS attacks are mostly used in man-in-the-middle attacks.

Linux DDOS and CC attack SolutionBackgroundNowadays, DDOS attacks are becoming more and more frequent. DDOS Denial-of-Service can be implemented without any technology. Some webmasters often report mysql 1040 errors on their websites, and their

Automatic Call of anti-virus software for red umbrella There is no technical knowledge about this thing. It starts a new process with the same code as the command line. To put it bluntly, anti-virus software is needed. For example, you can create an

Mcafee coffee can obtain the license key of all enterprise users through brute force cracking to the enterprise authorization number In. Log on to the console and log on with an authorization number 2003199-NAI that complies with the rules. An

An interface vulnerability in the U-Mail system (SQL injection is supported. Attackers can log on to the system and obtain the administrator password) If there are so many email systems, getshell is a headache in minutes. 1. Email system

SQL Injection exists in the ThinkPHP framework architecture Many people believe that SQL injection can be perfectly avoided without splicing SQL statements by using the database query method provided by the framework. Then you are wrong. Sometimes

Web security practices (1) Common http-based architecture analysis tools "When you want to do something better, you must first sharpen the tool." in Section 1, we are familiar with commonly used tools. The subsequent sections will also discuss how

Web Hacking skills Introduction This is the second article in web penetration exercises. You can search for the translation of the first article on our website and find it in this part, we will briefly introduce directory traversal and the Tips

Use bitwise inversion in PHP (~) Function creation backdoor, code variant Backdoor 1) PHP ~ Bitwise operators Some time ago, a foreigner posted an interesting things on twitter. After accessing a string suspected of garbled characters, it could