Aggregator

文章描述了错误代码521的含义及其对网络连接的影响，并提供了相关的解决建议和背景信息。

A vulnerability, which was classified as critical, has been found in Apache2Triad 1.5.4. Affected by this issue is some unknown functionality. The manipulation of the argument PHPSESSID as part of Parameter leads to session fixiation. This vulnerability is handled as CVE-2017-12965. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in AROX School ERP PHP Script 1.0. Affected by this issue is some unknown functionality of the file office_admin/. The manipulation of the argument ID as part of Parameter leads to sql injection. This vulnerability is handled as CVE-2017-15978. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in Artica Web Proxy 3.06.112216. This vulnerability affects unknown code of the file freeradius.users.php. The manipulation of the argument username-form-id leads to os command injection. This vulnerability was named CVE-2017-17055. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in Apache2Triad 1.5.4. This affects an unknown part of the file phpsftpd/users.php. The manipulation as part of Request leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2017-12970. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Apache2Triad 1.5.4 and classified as problematic. This vulnerability affects unknown code of the file phpsftpd/users.php. The manipulation of the argument Account as part of Parameter leads to cross site scripting. This vulnerability was named CVE-2017-12971. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Mojoomla Annual Maintenance Contract and classified as critical. This issue affects some unknown processing. The manipulation leads to unrestricted upload. The identification of this vulnerability is CVE-2017-14841. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Ametys up to 4.0.2. Affected is an unknown function of the component Access Restriction. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2017-16935. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Alienvault USM up to 5.4.2. It has been rated as problematic. This issue affects some unknown processing of the file /ossim/report/wizard_email.php of the component Report Handler. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2017-14956. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in Affiliate MLM Script 1.0. This issue affects some unknown processing of the file product-category.php. The manipulation of the argument key as part of Parameter leads to sql injection. The identification of this vulnerability is CVE-2017-17598. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in OpenBSD OpenSSH 3.7.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file buffer.c/channels.c. The manipulation leads to memory corruption. This vulnerability is known as CVE-2003-0695. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

值班处理员Johannes Ullrich当前威胁级别为绿色。即将在拉斯维加斯举办"Application Security: Securing Web Apps, APIs, and Microservices"课程，时间为2025年9月22日至27日。

这篇文章解析了网络连接中的“521错误代码”，探讨了其产生的原因、对用户体验的影响以及常见的解决方法。

HackerNews 编译，转载请注明出处： Eclypsium研究人员发现部分联想摄像头存在统称为BadCam的漏洞，攻击者可将其改造成BadUSB设备实施击键注入等跨操作系统攻击。首席安全研究员杰西·迈克尔（Jesse Michael）和米奇·什卡托夫（Mickey Shkatov）在DEF CON 33大会上演示了该漏洞。这可能是首次证实：已接入计算机的Linux系统USB外设遭入侵后可被武器化用于恶意目的。 Eclypsium在报告中指出：“研究人员发现联想特定型号摄像头运行Linux系统且未验证固件，可被武器化为BadUSB设备。据我们所知，这是首次证明攻击者能利用已接入计算机的非恶意USB设备发起攻击。” BadUSB攻击通过重编程固件模拟人机接口设备（HID）执行恶意指令，利用系统对USB设备的信任绕过防护。该技术由卡斯滕·诺尔（Karsten Nohl）和雅各布·莱尔（Jakob Lell）在2014年黑帽大会上首次展示，现已有Rubber Ducky、Flipper Zero等工具和开源载荷实现攻击模块化。此类攻击具有隐蔽性、模块化和持久化特点，常可窃取数据、提权或部署勒索软件。 Eclypsium研究证实，基于Linux的USB外设（如摄像头）无需物理接触即可被远程劫持为BadUSB设备。通过重刷固件，攻击者可令其伪装成恶意HID设备注入载荷，即使用户重装系统仍能持续感染主机。Linux的USB Gadget功能使这类设备能模拟可信外设，威胁范围扩展至众多基于Linux的USB设备。 报告进一步说明：“迈克尔和什卡托夫证实，运行Linux的USB外设无需插拔即可远程改造成BadUSB设备，这标志着攻击模式的重大演进——获得远程代码执行权限的攻击者可重刷已连接摄像头的固件，将其变成恶意HID或模拟额外USB设备。被武器化的摄像头在保持正常功能表象下，可实施击键注入、投递恶意载荷或建立持久化据点。” Eclypsium确认联想510 FHD和Performance FHD两款摄像头存在固件更新漏洞，攻击者可完全控制设备。两者均采用支持Linux USB Gadget的SigmaStar ARM芯片，易受BadUSB攻击。研究人员发现其更新流程缺乏保护机制，简单USB指令即可擦写8MB SPI闪存，使得攻击者在保留设备正常功能的同时植入恶意固件。 Eclypsium敦促联想和SigmaStar为受影响芯片添加固件验证机制。联想已发布带签名验证的新版安装工具修复漏洞，受影响用户应从官网下载更新。该公司正与SigmaStar合作评估并修复漏洞。 报告总结道：“随着设备供应链多元化和USB外设复杂化，企业亟需实施固件签名验证、设备认证机制，并细化终端外设的监控粒度。当BadUSB攻击不仅可通过物理接触，还能远程操控日常外设实现时，机构必须重构终端与硬件信任模型。”       消息来源：securityaffairs； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

请提供具体的文章内容或链接以便我为您总结。

文章介绍了错误代码521的原因及其对网络连接的影响。该错误通常由Cloudflare触发，表明服务器未及时响应请求。文章还提供了排查和解决此问题的方法。

HackerNews 编译，转载请注明出处： 哥伦比亚大学近期发生的数据泄露事件暴露了数十万申请者及在校师生的个人信息。该大学在向潜在受影响人群发送的数据泄露通知中透露，事件是在6月发生技术故障导致校内多套系统瘫痪后被发现的。 就在系统故障发生数小时后，这所知名研究机构曾否认遭遇黑客攻击。但后续调查显示，攻击者早在一个多月前就已渗透进哥伦比亚大学的系统。“我们的调查确认，在2025年5月16日左右，未经授权的第三方获取了哥伦比亚大学网络访问权限，并随后从系统中窃取特定文件，”泄露通知称。 校方向缅因州总检察长办公室提交的信息显示，此次攻击波及超过86.9万人。鉴于哥伦比亚大学仅有约3.4万名学生和7000余名教职工，受影响人数之多强烈暗示校友群体同样遭受波及。 作为美国顶尖教育机构，哥伦比亚大学不乏杰出校友。其校友名录包含从美国第26任总统西奥多·罗斯福、最高法院大法官鲁斯·巴德·金斯伯格到好莱坞影星杰克·吉伦哈尔等各界名人。我们已联系哥伦比亚大学寻求置评，收到回复后将更新报道内容。 数据泄露涉及哪些信息？ 校方强调，虽然攻击者确实入侵了系统，但“无证据表明哥伦比亚大学欧文医学中心的患者记录受影响”。攻击者可能获取了申请者及学生的以下信息： 姓名 出生日期 社会安全号码（SSN） 联系方式 人口统计数据 学业记录 助学金相关信息 保险信息 健康资料 并非所有个体在攻击中暴露的信息类型相同。数据泄露程度取决于个体身份（申请者或在校生）及其向校方提供的信息类别。“我们已在系统中实施多重防护措施以加强安全。未来将进一步研究可采取的额外步骤及防护方案，防止类似事件重演，”哥伦比亚大学在通知中表示。 然而，信息遭泄露的个人将面临更高的网络安全风险。一方面，泄露的社安号、生日及个人细节使攻击者可尝试身份盗用，例如以他人名义开设欺诈账户（网络罪犯常借此隐匿非法活动）。另一方面，来自常春藤盟校的数据对网络罪犯而言是宝藏。攻击者可能针对知名人士发起复杂的鱼叉式网络钓鱼攻击，或通过社会工程手段实施勒索。高净值人群因其财富和影响力成为最具价值的目标。 哥伦比亚大学培养过众多美国政界要员，该数据集甚至可能引起国家行为体的兴趣——他们或将其作为接近重要人物的初始接入点。这正是知名高等教育机构常被网络罪犯盯上的原因。今年早些时候，某勒索软件组织就宣称对欧洲顶尖学府索邦大学发动了攻击。       消息来源：cybernews； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

A vulnerability, which was classified as critical, was found in Advance Online Learning Management Script 3.1. Affected is an unknown function of the file courselist.php. The manipulation of the argument subcatid/popcourseid as part of Parameter leads to sql injection. This vulnerability is traded as CVE-2017-17599. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Advance B2B Script 2.1.3. It has been classified as critical. This affects an unknown part of the file tradeshow-list-detail.php. The manipulation of the argument show_id as part of Parameter leads to sql injection. This vulnerability is uniquely identified as CVE-2017-17602. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.