Objective:Oracle officially released the July Critical patch update CPU (Critical patch update), which fixes a high-risk vulnerability that could cause remote code execution cve-2018-2894:Http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.htmlcve-2018-2894, a security researcher at China's National Internet Emergency Center Cncert Mingxuan Song and security researcher at Apple, David Litchfield, also submitted findings.The National
This article mainly introduces the command attack in the common attack mode of PHP website. command injection, an order injection attack, is a means by which a hacker changes the dynamically generated content of a Web page by inputting HTML code into an input mechanism, such as a table field that lacks valid validation restrictions. Using system commands is a risky operation, especially if you are trying to use remote data to construct a command to execute. If the contaminated data is used, the
Affected Products:Vulnerability Description:Due to the php.ini settings in the php5.3.x version Request_order the default value is GP, resulting in discuz! 6.x/7.x global Variable Defense Bypass vulnerability include/global.func.php code: function daddslashes ($string, $force = 0) {!defined (' MAGIC_QUOTES_GPC ') define (' MAGIC_QUOTES_GPC ', GET_MAGIC_QUOTES_GPC ()); MAGIC_QUOTES_GPC | | $force) {if (Is_array ($string)) {foreach ($string as $key = =
First, Test
Java-jar commonscollectionstools.jar WebLogic 192.168.0.11 7001 f:/a.txt
After performing this operation, if the computer on the IP generated a.txt file, proof of the existence of the vulnerability (This command for window operation, Linux to modify the file path, has not been tested).
Test jar Download Address: http://download.csdn.net/detail/gongzi2311/9434503
second, solve
1. Quick fix
Found it.. \weblogic\middleware\modules\c
Lenovo Security Bulletin: LEN-6421
Potential impact: Users with older versions of Android may be susceptible to remote code execution or UXSS attacks, and users with any version of Android may be susceptible to Intent Scheme attacks.
Importance: High
Summary description:
A vulnerability has been detected on the Android version of eggplant that is below the 3.5.98_WW version. Lenovo advises customers to update the latest version of the eggplant to
Thunder Official Forum (DISCUZ) by cloud platform detected a SSRF loophole, the attacker through ssrf successful rebound shell, the flaw exists in a remote picture download interface, did not valid for the validity of the URL detection. This loophole was temporarily resolved today and a record of the repair method was made.
The vulnerability has not yet been made public and is now accessible by password.
This vulnerable URL address is/forum.php?mo
18, MS ODBC database connection overflow caused nt/9x denial of service attack
Vulnerability Description:
A Microsoft ODBC database may have potential overflow problems when connecting and disconnecting (Microsoft Access database related).
Connecting directly to the second database without canceling the connection may cause the service to stop.
Impact System:
ODBC version: 3.510.3711.0
ODBC Access Driver version: 3.51.1029.00
OS version: Windows NT 4.
way that is exhaustive.
Recommendation: It is recommended that access to the/IISADMPWD directory be prohibited
Workaround: Delete the achg.htr file
____________________________________________________________________________________
81
Type: Attack type
Name: exprcale.cfm
Risk Rating: Medium
Description: In ColdFusion Web directory:/cfdocs/expeval/exprcalc.cfm file, this file has a vulnerability that allows users to read any file on the server har
Attack | data | database | The number one killer of a script Vulnerability-the database download Vulnerability-is now known to more and more people. In the era of rapid updating of information technology, the loopholes are followed by various coping strategies, such as changing the suffix of the database, modifying the name of the database and so on. Many people think that as long as this can solve the prob
MySQL winmysqladmin 1.1 to explicitly stored MySQL Password Vulnerability
Source:
Involve program:
Winmysqladmin
Details:
Winmysqladmin is a MySQL management software, found it explicitly stored MySQL password in C: \ winnt \ My. INI file.
--- # This File was made using the winmysqladmin 1.1 Tool
[Mysqld]
Basedir = C:/MySQL
Datadir = C:/MySQL/Data
[Winmysqladmin]
Server = C:/MySQL/bin/mysqld-nt.exe
User = Admin
Password = XXXXX (i
On the project encountered a system will suddenly down the problem, because there is no detailed log information, baffled, and finally one day the problem appears again, the captured log information is:Error:transport error 202:handshake failed-connection prematurally closed ["transport.c", L41]JDWP exit Error Jvmti_error_none (0): Could not connect, timeout or fatal errorA search on the internet, the truth is that it was jkd1.5 a bug about how debug runs, because the JVM crashes because it rece
Often heard of ASP upload vulnerability, that is, some Trojan file to modify the suffix name (modified to the image file suffix), upload.
Use the following functions for this situation to identify:
Copy Code code as follows:
'******************************************************************
' Checkfiletype function to check whether a file is a picture file
' parameter filename is the path to the local file
' If it's one of the file jpe
Recently, some sites were found to be vulnerable to UBB Cross-site scripting attacks. Cross-site scripting attacks are rarely a significant impact on the server, but for a site, this vulnerability is too unworthy! Small, play point what dongdong come out, then change the homepage; Heavy theft of the user's cookies, even more will be g off the viewer's hard drive. A site is turned into a malicious website, who dares to come? If the station's webmaster
, then the harm is very great
Google can also be used to search for a number of vulnerable programs, such as Zeroboard before the discovery of a file code leak vulnerability, you can use Google to find online use of this program station
Point:
Intext:zeroboard filetype:php
or use:
Inurlutlogin.php?_zb_path= site:.jp
To find the page we need. phpMyAdmin is a powerful database * for software, some sites due to configuration errors, we can not use t
security details, develop good safety habits, otherwise it will bring huge security risks to their website. At present, most of the ASP programs on the site have such a security vulnerability, but if you write a program to pay attention to, it can be avoided.
1, user name and password is cracked
Attack principle: User name and password, is often the most interesting thing to hackers, if the source code is seen in some way, the consequences are seri
Safety
How to better achieve the prevention of hacker attacks, I mention personal views! First, the free program does not really have a fee, since you can share the original code, then the attacker can analyze the code. If you pay attention to precautions in detail, your site's security will be greatly improved. Even if there are vulnerabilities such as SQL injection, attackers will not be able to take your site immediately. Due to the ease of use of ASP, more and more Web site background progra
Resolves 18, MS ODBC database connection overflow causes nt/9x denial of service attack
Vulnerability Description:
A Microsoft ODBC database may have potential overflow problems when connecting and disconnecting (Microsoft Access database related).
Connecting directly to the second database without canceling the connection may cause the service to stop.
Impact System:
ODBC version: 3.510.3711.0
ODBC Access Driver version: 3.51.1029.00
OS version: Wi
Resolution iis4.0/iis5.0 very long file name request there is a vulnerability
Vulnerability Description:
Affected version:
Microsoft IIS 5.0
+ Microsoft Windows NT 2000
Microsoft IIS 4.0
+ Microsoft Windows NT 4.0
+ Microsoft BackOffice 4.5
-Microsoft Windows NT 4.0
+ Microsoft BackOffice 4.0
-Microsoft Windows NT 4.0
When a known filename is added with 230 "%20" plus a. htr, Microsoft IIS 4.0/5.0 is in
Vulnerability Name: ms12-020 Remote Desktop Protocol RDP denial of Access vulnerability
Condition: The victim must open the RDP protocol open port 3389 or port changed, know the opposite of RDP open port.
1.nmap Scan for a host with 3389 ports open in a network segment
NMAP-VV--open-p 3389-PN 60.10.0.0/16
2. Use the ms12-020 script in nmap to batch scan for the presence of vulnerabilities
Cd/usr/
The patching scenario appears.http://struts.apache.org/development/2.x/docs/security-bulletins.html-(announcement)The official security bulletin gives a number and a brief introduction, "A vulnerability, present in the Includeparams attribute of the URL and Anchor Tag, allows remote command Execution ".But it doesn't say the principle, nor does it release any patches.Analysis:In fact, this time STRUTS2 official issued a total of two loopholes, there i
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.