Cloud Security

FreeBSD 10.x ZFS encryption. key leakage Vulnerability (CVE-2015-1415)FreeBSD 10.x ZFS encryption. key leakage Vulnerability (CVE-2015-1415) Release date:Updated on:Affected Systems: FreeBSD FreeBSD 10.1 Description: CVE (CAN) ID:

Break through some security software to restrict remote login to computer names Problem Some server security software allows administrators to specify the names of computers that can be logged on (the names of the computers on which the

Open-Xchange Server and OX App Suite Vulnerability (CVE-2014-9466) Release date:Updated on: Affected Systems:Open-xchange Open-Xchange Server Open-xchange OX App SuiteUnaffected system:Open-xchange Open-Xchange Server 7.6.1-rev14Open-xchange

WordPress Video Player Plugin 'settings. php' SQL Injection Vulnerability Release date:Updated on: Affected Systems:WordPress Spider Video PlayerDescription:Bugtraq id: 70763 WordPress Spider Video Player is a Video Player Plug-in. WordPress

GNU Bash incomplete fix Remote Code Execution Vulnerability (CVE-2014-6278) Release date:Updated on: Affected Systems:GNU Bash Description:Bugtraq id: 70166CVE (CAN) ID: CVE-2014-6278 Bash, a Unix shell, was written by Brian fox for the GNU program

ESRI ArcGIS for Server open Redirection Vulnerability (CVE-2014-5122) Release date:Updated on: Affected Systems:ESRI ArcGIS for Server 10.1.1Description:--------------------------------------------------------------------------------Bugtraq id: 69341

WordPress FB Gorilla plugin 'game _ play. php' SQL Injection Vulnerability Release date:Updated on: Affected Systems:WordPress FB GorillaDescription:--------------------------------------------------------------------------------Bugtraq id: 69222CVE

Sap hana Extended Application Services Information Leakage Vulnerability Release date:Updated on: 2014-08-02 Affected Systems:Sap hana Extended Application ServicesDescription:------------------------------------------------------------------------

Mozilla Firefox/Thunderbird Stack Buffer Overflow (CVE-2014-1549) Release date:Updated on: Affected Systems:Mozilla Firefox 31Mozilla Thunderbird 31Description:--------------------------------------------------------------------------------Bugtraq

OpenSSL SSL/tls mitm Vulnerability (CVE-2014-0224) Release date:Updated on: 2014-06-06 Affected Systems:OpenSSL Project OpenSSL OpenSSL Project OpenSSL OpenSSL Project OpenSSL Description:--------------------------------------------------------------

Release date:Updated on: Affected Systems:IBM Platform Symphony 6.1.0IBM Platform Symphony 5.2Description:--------------------------------------------------------------------------------Bugtraq id: 65065CVE (CAN) ID: CVE-2013-6305 IBM Lotus

How can Internet Startups defend against DDoS attacks? Attackers control a large enough distributed cluster to launch attacks. All sorts of packages are available. You don't care what services you provide, and you don't have the patience to analyze

Jiaotu technology releases free Server Security Products On July 6, August 30, jiaotu technology, a leading information security vendor in China, held a product launch conference at the Beijing National Convention Center, "officially releasing the

How to Implement SSL perfect forward secrecy Technology in NGINX website servers? This article describes how to implement the Perfect Forward Secrecy (Perfect Forward Secrecy) and NGINX website server On Debian and Ubuntu systems. For other

How can malware bypass the most advanced security measures? This year, new reports are reported almost every week on the subject of data leaks from a large blue-chip company with strong financial resources. These companies usually purchase and

Virus Trojan scan: Reverse Analysis of pandatv (I)1. Preface conduct Reverse Analysis on viruses to thoroughly identify the behavior of viruses and take more effective measures. In order to save space, I am not going to thoroughly analyze the

Uses the CBC bit reverse attack to bypass the encrypted session token0x01 what is CBC bit inversion technology? The full name of the CBC mode is the Cipher Block Chainning, which is called because the ciphertext group wants to connect to each other

Purchase Web application firewall? You must consider these questions (1) Web Application Firewall is a complex product. In this article, expert Brad Causey describes the key issues that enterprises need to consider before purchasing WAF

SQL injection vulnerability in the latest ThinkPHP version You can say that the previous SQL injection vulnerability has a weakness. Indeed, tp I functions will be processed.But this hole, I function can't help, so you can't say anything.It has

Web Hacker is always in constant struggle with WAF, vendors are constantly filtering, and Hacker is constantly bypassing. WAF bypass is an eternal topic, and many friends have summarized many strange tricks. So today I am going to make a small