Cloud Security

Spectre & Meltdown vulnerability patch repair security tips Spectre/Meltdown events seem to have entered the second stage-various vendors have released their own repair solutions. However, it does not seem as smooth as imagined. The industrial

The Open Source library of the Mars detector software is maliciously exploited. Recently, Palo Alto Networks released a report saying that the Open Source library of the Mars detector software was maliciously exploited.Phishing Attacks According to

IOS ice and fire songs-App Hook on a non-jailbreaking mobile phone 0x00 Ice refers to the user State, and fire refers to the kernel state. How to break through the user State sandbox like a refrigerator and finally reach and control the burning

Adobe Reader dc agm Heap Buffer Overflow Vulnerability (CVE-2015-6696)Adobe Reader dc agm Heap Buffer Overflow Vulnerability (CVE-2015-6696) Release date:Updated on:Affected Systems: Adobe Acrobat Reader Description: CVE (CAN) ID: CVE-2015-6696

Remote unauthorized print vulnerability caused by improper design of a printer of HP The HP LaserJet M1536dnf MFP printer port 9999 has an unauthorized printing vulnerability. Any content sent to port 9999 can be printed, or the printer can always

Multiple Linksys EA Series vro Password Management Vulnerability (CVE-2014-8243) Release date:Updated on: Affected Systems:Linksys EA Series router EA6900Linksys EA Series router EA6700Linksys EA Series router EA6500Linksys EA Series router

IBM WebSphere mq fdc handles DoS Vulnerabilities Release date:Updated on: Affected Systems:IBM WebSphere message 7.0Unaffected system:IBM WebSphere MQ 7.0.1.5Description:------------------------------------------------------------------------------

Release date:Updated on: 2013-05-19 Affected Systems:Adobe Acrobat Adobe Reader Description:--------------------------------------------------------------------------------Bugtraq id: 59851CVE (CAN) ID: CVE-2013-2549, CVE-2013-2550, CVE-2013-2718,

Release date:Updated on: Affected Systems:IBM DB2 9.xIBM DB2 10.xDescription:--------------------------------------------------------------------------------Bugtraq id: 60255Cve id: CVE-2013-3475 IBM DB2 is a large commercial relational database

Investigate how CVE-2015-5477 & CloudFlare Virtual DNS protects its users Last week, ISC released a patch to fix a remote vulnerability in the BIND9 DNS server. This vulnerability causes the server to crash when processing a certain data packet.The

The netbo Internet cafe management system allows other users to freely modify their internet password and leak information such as the password of the enterprise SMS interface database. The Internet cafe management system allows you to change the

Intranet penetration 1: Use the Xss vulnerability to access the Intranet 0x01: Popular Science Beef is currently The most popular WEB Framework attack platform in Europe and America. Its full name is: The Browser Exploitation Framework Project. beef

Digital Certificate and Its Application in Security Testing0x00 background To perform security tests on the Web layer, it is inevitable that a man-in-the-middle proxy will be used to capture packets for analysis. Common tools include BurpSuit,

  I have previously shared with you some personal views on the two cutting-edge technologies that may be used in the Intranet security field (sandbox that has not been widely used, and access control that has become more mature, today, I will

Note: As the last article in this series, this article is first published on my BKJIA blog. This article puts forward some ideas and suggestions for the construction of the tax system security management platform. Refer:Article 1:Requirement

PHP backdoor composed of the. user. ini file0x00 background This is an estimate that many people think it is a bad street thing: PHP backdoor composed of. htaccess files Let me create a new one:. user. ini. It is more widely used than. htaccess.

Password security perspective: How to securely store user passwords    0 × 00 Preface First, if you are not familiar with the concept and use of cryptography, or you are in need of some cryptographic guidance, I recommend that you read this

One of the things faced by many network engineers is the maintenance and update of SSL certificates. For the author, SSL certificates are mainly used for VPN deployment, but there are also many network devices that need certificates to encrypt

VBulletin rce 0day Analysis VBulletin is a leading foreign Forum program, which is generally called VBB in China. It is developed based on PHP + mySQL. vBulletin is a commercial software and is paid.VBulletin allows remote upload of files through

Common security vulnerabilities and defense in Financial Industry platforms (1) I. Preface Internet finance is an emerging term in the financial industry over the past two years and an important branch of the Internet industry. However, internet