Cloud Security

Samba authenticated users can change passwords of other users On Samba 4 ad dc, the LDAP server in Samba 4.0.0 or later mistakenly verifies the permission to change the password through LDAP, allowing authenticated users to change the password of

Linux Kernel 'drivers/block/floppy. c' Security Restriction Bypass Vulnerability (CVE-2018-7273)Linux Kernel 'drivers/block/floppy. c' Security Restriction Bypass Vulnerability (CVE-2018-7273) Release date:Updated on:Affected Systems: Linux kernel

Detailed analysis of CPU vulnerability SpectrePreface Alpha lab researchers combined the POC to further analyze the vulnerability principles, procedures, and details. In this article, we will analyze the key points of each link in the POC and all

Advantech WebAccess Denial of Service Vulnerability (CVE-2017-16728)Advantech WebAccess Denial of Service Vulnerability (CVE-2017-16728) Release date:Updated on:Affected Systems: Advantech WebAccess Description: Bugtraq id: 102424CVE (CAN) ID:

Comments: Disable port 135/139/445 in Windows. For security purposes, port 135 is mainly used to use RPC (Remote Procedure Call, Remote process Call) Protocol and provide DCOM (Distributed Component Object Model) service.Port Description: port 135

I have previously compiled an access authentication article based on 802.1x protocol, which is a common method to achieve network security, but the premise is that the client needs to pass the corresponding media (authentication software) to achieve

Today, I found a domestic machine with abnormal traffic. I found that the DNS Cache service running on this machine was used as an amplification lever for attacks. Let's take a look at it. When a traffic exception is detected, check the TCP session

Some people think that anti-virus is a simple task. Isn't it just by clicking the "anti-virus" button of anti-virus software? Yes, anti-virus software is required for anti-virus, but it doesn't mean that it is a good thing to do when you click

Elk cloner: the first computer virus. It will get all the stuff on your disk, and it will even penetrate into the chip. This is Cloner! It will stick you like glue, and it will modify the memory! DX}Computer viruses are the most famous member of a

Text/figure DecemberOnline worms are used to running QQ, MSN, FlashGet, and other programs every day. Do you think it is troublesome to repeat the same action day after day? Therefore, using a program to enable multiple processors is definitely a

Comments: Encrypting files and folders is a way for many users to protect data. Unfortunately, many do not choose EFS encryption, but use third-party tools for protection. There is a major security risk, because many encryption tools use System bugs

CommentsEncryption technology uses mathematical or physical means to protect the data of electronic information during transmission or storage devices to prevent leakage. In information security technology, encryption technology plays an important

Comments: When maintaining and using computers, network administrators often encounter various password loss problems. Here, we have prepared some methods to crack the passwords for the majority of network administrators, but I hope you will not do

Comments: [Remove text title] manual shelling entry 17th VGCrypt PE Encryptor V0.75 [remove text author] weiyi75 [Dfcg] [author mailbox] weiyi75@sohu.com [author homepage] Dfcg official base camp [use tools] Peid, ollydbg, ImportREC [shelling

Sitefinity is a content management system developed using ASP.net. The ImageEditorDialog. aspx in Sitefinity CMS3.x. 4.0 has a vulnerability in processing the extension of uploaded files. Attackers may exploit this vulnerability to upload webshells.

Software Security A Forum is an electronic information service system on the Internet. It provides a public electronic whiteboard. Every registered user can "write" it on it to publish information or make comments. Currently, few forum software are

  SQLI (also known as SQL injection or structured query language injection) is the first step in getting started by exploiting or hacking websites and degrading them. It is easily done and it is a great starting off point. sqli is just basically

  As in the real world, the Internet is full of intrigue. Website DDOS attacks have become the biggest headache for webmasters. In the absence of hardware protection, finding a software alternative is the most direct method. For example, iptables is

Vulnerability files: editors/fckeditor/editor/filemanager/upload/php/upload. phpThe solution provided on the Internet isSolution: Delete the FCK editor and use another editor or find editors/fckeditor/editor/filemanager/upload/php/upload. the php

Graph testing is often used to protect key functions and prevent automated attacks. 139 email graphic verification can be easily bypassed without protection139 email image verification is applied in multiple places, all of which are the same set of