小凤居 ChineseHack.Com.Cn

欢迎来到 小凤居 

最新漏洞：

• MS08-062 Windows Internet 打印服务中的漏洞可能允许远程执行代...07/02
• MS08-063 SMB 中的漏洞可能允许远程执行代码 （严重）07/02
• MS08-064 Microsoft 虚拟地址描述符操作中的漏洞可能允许特权提升...07/02
• MS08-065 Microsoft 消息队列中的漏洞可能允许远程执行代码（严重...07/02
• MS08-066 Microsoft Ancillary Function Driver 中的漏洞可能允许...07/02
• Dovecot ACL Plugin绕过安全限制07/02
• VMware ESX / ESXi "JMP"权限扩大的问题07/02
• VMware VirtualCenter多个漏洞07/02
• HP Insight Diagnostics泄露不特定的文件的漏洞07/02
• MPlayer "demux_real_fill_buffer()"整型溢出的漏洞07/02
• MS08-067 Microsoft 服务器服务中的漏洞可能允许远程执行代码(严...07/02
• RealWin 处理INFOTAG/SET_CONTROL包时缓冲溢出07/02

漏洞预报：

• IIS 6 惊现 WebDAV 漏洞攻击05/20
• Microsoft IIS WebDAV Unicode请求绕过认证漏洞05/19
• D-Link MPEG4 Viewer ActiveX控件多个堆溢出漏洞05/19
• BigACE username参数SQL注入漏洞05/18
• A-A-S服务器跨站脚本和默认口令漏洞05/17
• Linux Kernel NFS客户端实现MAY_EXEC权限检查漏洞05/17
• Sendmail X-header头远程堆溢出漏洞05/17
• Cyrus SASL sasl_encode64()函数远程溢出漏洞05/17
• CycloMedia CycloScopeLite ActiveX控件内存破坏漏洞05/17
• Microchip MPLAB IDE .mcp文件处理栈溢出漏洞05/17
• Bitweaver version参数目录遍历漏洞05/15
• SquirrelMail 1.4.18版本修复多个安全漏洞05/15

漏洞研究：

• 知名美女黑客曝光英特尔CPU缓存漏洞04/02
• Discuz!论坛wap功能模块编码的注射漏洞04/01
• 让有权限的人帮你删帖子！MP3跨站03/30
• [图文]老Y CMS系统注入漏洞分析与利用03/29
• 浅析iis6.0设计缺陷03/27
• Qcms1.0漏洞解析03/26
• Windows内核图像文件漏洞揭示严重安全问题03/25
• ECShop注射漏洞---影响2.5.x和2.6.x,其他版本未测试03/25
• ECMall本地文件包含漏洞03/24
• 浅析LxBlog V6变量未初始化漏洞03/19
• [图文]动网xss跨站漏洞(0day)03/17
• phpcms2008-0day ask/search_ajax.php03/16

漏洞利用：

• SonicFTPServer远程超长命令堆栈溢出11/19
• FlashFXP PWD 命令超长畸形参数远程缓冲溢出漏洞02/22
• Trend Micro扫描引擎UPX压缩PE文件缓冲区溢出漏洞02/10
• STLPort库多个缓冲区溢出漏洞02/09
• IBM AIX rdist工具本地缓冲区溢出漏洞02/08
• GOM Player ASX播放列表缓冲区溢出漏洞02/07
• CA BrightStor ARCServe BackUp LGServer远程堆溢出漏洞02/05
• Trend Micro VirusWall VSAPI库本地命令行参数缓冲区溢出漏洞02/03
• CHMlib页面块处理长度缓冲区溢出漏洞02/02
• NCTsoft NCTAudioFile2 ActiveX控件远程栈溢出漏洞01/31
• Citrix Presentation/MetaFrame Server cpprov.dll畸形参数栈缓冲...01/30
• Microsoft Visual C++ 资源文件含远程栈溢出漏洞01/27

外壳代码：

• Windows Media Encoder wmex.dll ActiveX BOF Exploit (MS08-053...09/16
• Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF Ex...08/27
• Belkin wireless G router + ADSL2 modem Auth Bypass Exploit08/27
• Dana IRC 1.4a Remote Buffer Overflow Exploit08/27
• Anzio Web Print Object <= 3.2.30 ActiveX Buffer Overflow Exp...08/21
• FlashGet 1.9.0.1012 (FTP PWD Response) BOF Exploit (safeseh)...08/18
• IntelliTamper 2.07/2.08 Beta 4 A HREF Remote Buffer Overflow...08/14
• IntelliTamper 2.07 (imgsrc) Remote Buffer Overflow Exploit08/04
• NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow E...08/01
• Shellcode学习之栈溢出原理初探07/31
• IntelliTamper 2.07 (server header) Remote Code Execution Exp...07/25
• IntelliTamper 2.07 (map file) Local Arbitrary Code Execution...07/22

远程漏洞：

• Racer 0.5.3b5 Remote Stack Buffer Overflow Exploit05/13
• Sysax Multi Server 4.3 Remote Arbitrary Delete Files Exploit...05/13
• Telnet-Ftp Service Server v1.x Multiple Vulnerabilities (pos...05/13
• Femitter FTP Server 1.x Multiple Vulnerabilities (post auth)...05/13
• Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exp...04/01
• XBMC 8.10 (Get Request) Remote Buffer Overflow Exploit (win)...04/01
• XBMC 8.10 (takescreenshot) Remote Buffer Overflow Exploit04/01
• XBMC 8.10 (get tag from file name) Remote Buffer Overflow Ex...04/01
• NOKIA Siemens FlexiISN 3.1 Multiple Auth Bypass Vulnerabilit...03/30
• Amaya 11.1 W3C Editor/Browser (defer) Stack Overflow Exploit...03/30
• FreeSSHd 1.2.1 (rename) Remote Buffer Overflow Exploit (SEH)...03/27
• IncrediMail 5.86 (XSS) Script Execution Exploit03/24

脚本攻防：

• TotalCalendar 2.4 (inc_dir) Remote File Inclusion Vulnerabil...05/09
• WebFileExplorer 3.1 (Auth Bypass) SQL Injection Vulnerabilit...04/28
• Dynamic Flash Forum 1.0 Beta Multiple Remote Vulnerabilities...04/28
• Absolute Form Processor XE-V 1.5 (Auth Bypass) SQL Injection...04/28
• PHP-Agenda <= 2.2.5 Remote File Overwriting Vulnerabilities04/28
• FunGamez rc1 (AB/LFI) Multiple Remote Vulnerabilities04/27
• Dokeos LMS <= 1.8.5 (whoisonline.php) PHP Code Injection Exp...04/25
• MixedCMS 1.0b (LFI/SU/AB/FD) Multiple Remote Vulnerabilities...04/25
• Studio Lounge Address Book 2.5 Authentication Bypass Vulnera...04/25
• I-Rater Pro/Plantinum v4 (Auth Bypass) SQL Injection Vulnera...04/25
• FreznoShop 1.3.0 (id) Remote SQL Injection Vulnerability04/21
• e107 Plugin userjournals_menu (blog.id) SQL Injection Vulner...04/21

本地漏洞：

• VUPlayer <= 2.49 .cue File Universal Buffer Overflow Exploit...03/28
• Winamp <= 5.541 Skin Universal Buffer Overflow Exploit03/24
• Media Commands .m3l File Local Buffer Overflow Exploit03/24
• Apple MACOS X xnu <= 1228.x Local Kernel Memory Disclosure E...03/16
• Woltlab Burning Board 3.0.x Multiple Remote Vulnerabilities03/11
• YACS CMS 8.11 update_trailer.php Remote File Inclusion Vulne...03/10
• SAS Hotel Management System (myhotel_info.asp) SQL Injection...03/10
• simplePMS CMS 0.1.3a LFI / Remote Command Execution Exploit03/10
• Merak Media PLayer 3.2 m3u File Local Buffer Overflow Exploi...03/04
• Oracle 10g MDSYS.SDO_TOPO_DROP_FTBL SQL Injection Exploit (m...03/03
• FreeBSD 7.0-RELEASE Telnet Daemon Local Privilege Escalation...02/24
• dBpowerAMP Audio Player 2 .PLS File Local Buffer Overflow Ex...02/23

DOS、POC：

• [图文]Microsoft IIS 6.0 WebDAV Remote Authentication Bypass ...05/18
• [图文]Sorinara Streaming Audio Player 0.9 (.m3u) Local Stack...05/06
• [图文]32bit FTP (09.04.24) Banner Remote Buffer Overflow PoC...05/06
• [图文]Adobe Acrobat Reader 8.1.2 – 9.0 getIcon() Memory Cor...05/05
• [图文]Quick 'n Easy Mail Server 3.3 (Demo) Remote Denial of ...05/05
• [图文]EW-MusicPlayer 0.8 (.m3u file) Local Buffer Overflow P...05/05
• [图文]Solaris 10 / OpenSolaris (fasttrap) Local Kernel Denia...05/05
• [图文]Solaris 10 / OpenSolaris (dtrace) Local Kernel Denial ...05/05
• [图文]Beatport Player 1.0.0.283 (.M3U File) Local Buffer Ove...05/04
• [图文]Addonics NAS Adapter FTP Remote Denial of Service Expl...05/04
• [图文]Linux Kernel 2.6 UDEV < 141 Local Privilege Escalation...05/02
• [图文]Dream FTP Server 1.02 (users.dat) Arbitrary File Discl...04/26

漏洞修复：

• QQ医生 是专门针对QQ帐号密码被盗问题所提供的一款盗号木马查杀及...05/13
• Windows优化大师 优化大师官方网站 系统软件漏洞修复05/13
• 360安全中心 - 漏洞修复|免费杀毒|网络安全|电脑安全|杀木马|流氓...05/13