Cloud Security

Foxit Reader out-of-bounds read information leakage Vulnerability (CVE-2017-10944)Foxit Reader out-of-bounds read information leakage Vulnerability (CVE-2017-10944) Release date:Updated on:Affected Systems: Foxit Reader 8.3.0.14878 Description:

Linux Kernel Local Memory Corruption Vulnerability (CVE-2017-16996)Linux Kernel Local Memory Corruption Vulnerability (CVE-2017-16996) Release date:Updated on:Affected Systems: Linux kernel Description: Bugtraq id: 102267CVE (CAN) ID: CVE-2017

Apple iOS ImageIO Memory Corruption Vulnerability (CVE-2016-4631)Apple iOS ImageIO Memory Corruption Vulnerability (CVE-2016-4631) Release date:Updated on:Affected Systems: Apple iOS Apple OS X Apple watchOS Description: CVE (CAN) ID: CVE-2016-4631

Oracle Sun Systems ILOM Vulnerability (CVE-2016-5453)Oracle Sun Systems ILOM Vulnerability (CVE-2016-5453) Release date:Updated on:Affected Systems: Oracle Sun Systems Products Suite 3.2Oracle Sun Systems Products Suite 3.1Oracle Sun Systems

Android Qualcomm component Privilege Escalation Vulnerability (CVE-2016-3768)Android Qualcomm component Privilege Escalation Vulnerability (CVE-2016-3768) Release date:Updated on:Affected Systems: Android Description: CVE (CAN) ID: CVE-2016-37

Apple iOS WebKit information leakage (CVE-2016-1864)Apple iOS WebKit information leakage (CVE-2016-1864) Release date:Updated on:Affected Systems: Apple iOS Apple iOS Description: CVE (CAN) ID: CVE-2016-1864IOS is an operating system

Cisco IP 8800 device Web application Denial of Service Vulnerability (CVE-2016-1421)Cisco IP 8800 device Web application Denial of Service Vulnerability (CVE-2016-1421) Release date:Updated on:Affected Systems: Cisco IP Phones 8800 Description:

Moxa Secure Router Memory Leak Vulnerability (CVE-2016-0877)Moxa Secure Router Memory Leak Vulnerability (CVE-2016-0877) Release date:Updated on:Affected Systems: Moxa EDR-G903 Description: CVE (CAN) ID: CVE-2016-0877The Moxa EDR-G903 is a

Arbitrary File Reading caused by a game configuration error in the QQ space Xunxia? Resin ProblemsRead/etc/passwdHttp://s138.app24599.qqopenapp.com/resin-doc/resource/tutorial/jndi-appconfig/test? InputFile

Apache OpenMeeting Information Leak Vulnerability (CVE-2016-2164)Apache OpenMeeting Information Leak Vulnerability (CVE-2016-2164) Release date:Updated on:Affected Systems: Apache Group OpenMeetings Description: CVE (CAN) ID:

How can I set the shared file access permission and control the Shared File Access to prevent arbitrary access to shared files?The security of shared files is related to enterprises' intangible assets and trade secrets. Therefore, you must properly

Use Gnupg to encrypt files in LinuxGuideGnuPG (GNU Privacy Guard or GPG) is an open source code for encryption or signature released with the GNU General Public License, which can be used to replace PGP. Most gpg software only supports the command

Word prompts "enable macro "? Be careful when computer files are encrypted by the Locky fraudster Virus If you prompt "the macro has been disabled" when you open the Word document, do not click "enable content! Recently, a type of Locky scam virus

PHP serialization/object Injection Vulnerability This article is a short story about PHP serialization/object injection vulnerability analysis. It describes how to obtain the remote shell of a host. If you want to test this vulnerability on your own,

If the Path of the Momo web server is improperly handled, it can be a forward proxy (idc machines/cannot access the office network) The Path of a web server in Momo is not properly handled. It can be a forward proxy. It is an idc machine and can be

A mobile provincial Business Office System of China Mobile uses java Reverse Sequence upload shell to leak database/application system account and password information >_   Mask Region 1.://**.**.**/zjweb/ Java Reverse Sequence upload

Vulnerability Analysis of an attack Tracing System (affecting customers' core network segments and sensitive monitoring information) The device is deployed on the Intranet. the device is directly connected to the host device monitored on the

Hero mutual entertainment weak passwords in SQL injection at the background of a website (the number of game user data involved in a gun battle is unknown) Take the small vendor-before getshell, It would be 2 rank AH (some of the information is also

Youmi Bao can reset any user password (all domain names registered here can be hijacked) RT Domain Name merchant Security preemptible reset any user password (all domain names registered here can be hijacked)Password retrieval address:

Domain penetration -- Pass The Ticket0x00 Preface The previous article introduced The Pass The Hash and Pass The Key skills. Next, I will introduce The Pass The Ticket 0x01 Introduction In the domain environment, Kerberos is used for identity