Aggregator
'Sitting Ducks'为域名所有者制造劫持威胁
3 months ago
安全客
微软 Google 在 AI 基础设施上投入数百亿美元
3 months ago
微软披露,在截至 6 月的季度它的现金资本支出和设备支出高达 190 亿美元,相当于 5 年前的全年支出。这笔支出大部分和 AI 有关,其中半数被用于建造和租赁数据中心。Google 的情
微软 Google 在 AI 基础设施上投入数百亿美元
3 months ago
微软披露,在截至 6 月的季度它的现金资本支出和设备支出高达 190 亿美元,相当于 5 年前的全年支出。这笔支出大部分和 AI 有关,其中半数被用于建造和租赁数据中心。Google 的情况类似,它在上半年大幅增加了 AI 基础设施的支出,预计年底将花费高达 490 亿美元。但在 AI 上的投资至少在短期内是无法回本的,微软首席财务官 Amy Hood 表示,该公司预测这些投资可能需要 15 年或更长时间才能货币化。这一言论令分析师们感到担忧。高盛资深分析师 Jim Covello 上个月指出,AI 远未达到实用的水平。虽然科技巨头们坚称 AI 是一项长期投资,但华尔街的分析师们对亏损日益谨慎。OpenAI 被认为如果没有巨额资金注入会在未来 12 个月内耗尽现金。
新型安卓银行特洛伊木马 BingoMod 盗取资金并清除设备
3 months ago
安全客
如何防范HVV供应链攻击;数据安全管理岗的归属问题 | FB甲方群话题讨论
3 months ago
在HVV的供应链攻击中,横向移动是一个常见的攻击阶段。企业如何加强内部网络隔离,防止攻击者通过供应链漏洞进行横向移动?
攻击者劫持Facebook页面,推广恶意AI照片编辑器
3 months ago
安全客
Black Basta 在 Qakbot 下架后开发定制恶意软件
3 months ago
安全客
ISC.AI 2024人工智能峰会:解锁明星场景,助推AI普惠
3 months ago
安全客
XCon2024议题||挖掘Windows系统组件中的认证前远程代码执行漏洞
3 months ago
循万变·见未来——技术前瞻
未来,远程未授权漏洞的发掘将呈现三大趋势:
1、发掘难度越来越高
2、利用复杂程度越来越高,常常需要配合多个高质量漏洞,并结合目标程序的特性才能完成利用
3、云平台上远程漏洞的重要性越来越高
——独立安全研究员 古河
在漏洞挖掘领域,未授权的远程代码执行漏洞一直是攻防两方关注的焦点。
漏洞研究员通常也把挖掘此类漏洞看作一项极具挑战性的工作,这在Windows系统漏洞研究领域也不例外。由于此类漏洞的挖掘难度和高价值,微软在其Windows预览版漏洞奖励计划中,特意为此类未授权的远程代码执行漏洞设置了最高达10万美金的漏洞奖励。
在过去的一段时间,演讲者对Windows系统和相关组件中的认证前远程攻击面进行了一些探索和研究工作,并在一部分组件中成功发现了一些漏洞,协助微软修复了漏洞并获得了对应的致谢和奖励。
议题简介
《挖掘Windows系统组件中的认证前远程代码执行漏洞》
在本议题中,独立安全研究员 古河将带来相关研究工作的成果分享,涉及DNS/LDAP/网络协议/远程文件系统等相关组件,介绍这些组件的架构、攻击面和实际的漏洞,以及挖掘漏洞时的一些思路。
演讲人介绍
古河——独立安全研究员
独立安全研究员。研究兴趣包括漏洞挖掘、利用和检测防御。曾在Microsoft/Google/Apple/Adobe等主流厂商的产品中独立发现数百个高危漏洞,并多次在Pwn2Own/天府杯等安全竞赛中攻破
IE/Edge/Chrome/Safari/Flash/Office等多个目标,也曾发现EOS区块链远程代码执行漏洞。
曾五次获得微软MSRC最具价值安全研究员榜单的年度第一,并获得过两个Pwine Awards奖项,分别是“史诗级成就奖”和“最佳远程代码执行漏洞奖”。
曾应邀在Black Hat US/EU、XCon、SysCan、ZeroCon、PoC、PacSec、CodeBlue等会议上发表演讲。在18年获杰出青年工程师奖。
XCon2024售票通道现已全面开启
【XCon&KCon,3日联票】¥2069元,仅限30张
【循变者】¥2090元,XCon2024全场通——含聚焦场演讲+HackingGroup“未来之锋·智创奇迹”技术论坛+展商空间+极客市集
【聚焦者】¥2790元,XCon2024全场通——仅限会议当日现场购买,不支持票券折扣
【“未来之锋·智创奇迹”技术论坛】¥0元,XCon&HackingGroup “未来之锋·智创奇迹”技术论坛+展商空间+极客市集
XCon组委会
XCon2024议题||挖掘Windows系统组件中的认证前远程代码执行漏洞
3 months ago
XCon组委会
CVE-2024-5595 | Essential Blocks Plugin up to 4.6.x on WordPress Page cross site scripting
3 months ago
A vulnerability was found in Essential Blocks Plugin up to 4.6.x on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Page Handler. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2024-5595. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-42001 | Vonets VGA-1000 up to 3.3.23.6.9 direct request (icsa-24-214-08)
3 months ago
A vulnerability was found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to direct request.
This vulnerability is known as CVE-2024-42001. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-39791 | Vonets VGA-1000 up to 3.3.23.6.9 stack-based overflow (icsa-24-214-08)
3 months ago
A vulnerability was found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9. It has been classified as very critical. Affected is an unknown function. The manipulation leads to stack-based buffer overflow.
This vulnerability is traded as CVE-2024-39791. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-39815 | Vonets VGA-1000 up to 3.3.23.6.9 unknown vulnerability (icsa-24-214-08)
3 months ago
A vulnerability was found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9 and classified as critical. This issue affects some unknown processing. The manipulation leads to improper check or handling of exceptional conditions.
The identification of this vulnerability is CVE-2024-39815. The attack may be initiated remotely. There is no exploit available.
vuldb.com
四川省熊猫杯初赛和决赛题WP - 渗透测试中心
3 months ago
初赛web_ezcmsswagger泄露test/test测试账号登录,/sys/user/**没有做鉴权,可以添加一个超级管理员用户,此时仍然不知道roleId。并且role模块没有未授权。继续阅
四川省熊猫杯初赛和决赛题WP - 渗透测试中心
3 months ago
初赛web_ezcmsswagger泄露test/test测试账号登录,/sys/user/**没有做鉴权,可以添加一个超级管理员用户,此时仍然不知道roleId。并且role模块没有未授权。继续阅读user模块,发现接口这里存在roleid泄露,这里填入前面泄露的admin的id fcf34b56
渗透测试中心
CVE-2024-37023 | Vonets VGA-1000 up to 3.3.23.6.9 os command injection (icsa-24-214-08)
3 months ago
A vulnerability has been found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9 and classified as critical. This vulnerability affects unknown code. The manipulation leads to os command injection.
This vulnerability was named CVE-2024-37023. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-41936 | Vonets VGA-1000 up to 3.3.23.6.9 path traversal (icsa-24-214-08)
3 months ago
A vulnerability, which was classified as critical, was found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9. This affects an unknown part. The manipulation leads to path traversal.
This vulnerability is uniquely identified as CVE-2024-41936. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-29082 | Vonets VGA-1000 up to 3.3.23.6.9 access control (icsa-24-214-08)
3 months ago
A vulnerability, which was classified as critical, has been found in Vonets VAR1200-H, VAR1200-L, VAR600-H, VAP11AC, VAP11G-500S, VBG1200, VAP11S-5G, VAP11S, VAR11N-300, VAP11G-300, VAP11N-300, VAP11G, VAP11G-500, VBG1200, VAP11AC and VGA-1000 up to 3.3.23.6.9. Affected by this issue is some unknown functionality. The manipulation leads to improper access controls.
This vulnerability is handled as CVE-2024-29082. The attack may be launched remotely. There is no exploit available.
vuldb.com