小凤居 ChineseHack.Com.Cn

欢迎来到 小凤居 

最新漏洞：

• Core FTP处理Hostname时缓冲溢出03/11
• Cisco ACE XML Gateway / Web Application Firewall Internal IP...03/11
• MS10-016-重要 Windows Movie Maker 中的漏洞可能允许远程执行代...03/11
• MS10-017-重要 Microsoft Office Excel 中的漏洞可能允许远程执行...03/11
• Yahoo Player v1.0 (.m3u/.pls/.ypl) Buffer Overflow Exploit (...03/08
• Tod Miller Sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2...03/08
• JITed stage-0 shellcode03/08
• Apache 2.2.14 mod_isapi Dangling Pointer Remote SYSTEM Explo...03/07
• PHP-NUKE CMS (Survey and Poll) SQL Injection Vulnerability03/06
• PhP-Nuke user.php SQL Injection03/06
• Linux x86 - disabled modsecurity - 64 bytes03/06
• E-topbiz Link ADS 1 PHP script (linkid) Blind SQL Injection ...03/06

漏洞预报：

• TinyWebGallery /admin/_include/init.php模块本地文件包含漏洞12/23
• Discuz!论坛preg_match()函数未初始化$onlineipmatches变量漏洞12/23
• Adobe Reader spell.customDictionaryOpen() Javascript函数远程...12/23
• Adobe又现漏洞黑客可获机器完整控制权10/12
• Fckeditor 2.4.2 php任意上传文件漏洞09/30
• [图文]无孔不入 新Web攻击可劫持剪贴板(图)09/25
• [图文]Linux 内核 20 天内连爆两大高危漏洞09/23
• Notepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow PoC09/21
• Oracle Secure Backup Server 10.3.0.1.0 Auth Bypass/RCI09/21
• 白帽黑客又爆Windows漏洞 可致远程攻击09/18
• [图文]Oracle Secure Backup Server 10.3.0.1.0 Auth Bypass/RCI...09/18
• Win32系统中进程主线程初始化时，ebx为什么指向PEB09/18

漏洞研究：

• 知名美女黑客曝光英特尔CPU缓存漏洞04/02
• Discuz!论坛wap功能模块编码的注射漏洞04/01
• 让有权限的人帮你删帖子！MP3跨站03/30
• [图文]老Y CMS系统注入漏洞分析与利用03/29
• 浅析iis6.0设计缺陷03/27
• Qcms1.0漏洞解析03/26
• Windows内核图像文件漏洞揭示严重安全问题03/25
• ECShop注射漏洞---影响2.5.x和2.6.x,其他版本未测试03/25
• ECMall本地文件包含漏洞03/24
• 浅析LxBlog V6变量未初始化漏洞03/19
• [图文]动网xss跨站漏洞(0day)03/17
• phpcms2008-0day ask/search_ajax.php03/16

漏洞利用：

• SonicFTPServer远程超长命令堆栈溢出11/19
• FlashFXP PWD 命令超长畸形参数远程缓冲溢出漏洞02/22
• Trend Micro扫描引擎UPX压缩PE文件缓冲区溢出漏洞02/10
• STLPort库多个缓冲区溢出漏洞02/09
• IBM AIX rdist工具本地缓冲区溢出漏洞02/08
• GOM Player ASX播放列表缓冲区溢出漏洞02/07
• CA BrightStor ARCServe BackUp LGServer远程堆溢出漏洞02/05
• Trend Micro VirusWall VSAPI库本地命令行参数缓冲区溢出漏洞02/03
• CHMlib页面块处理长度缓冲区溢出漏洞02/02
• NCTsoft NCTAudioFile2 ActiveX控件远程栈溢出漏洞01/31
• Citrix Presentation/MetaFrame Server cpprov.dll畸形参数栈缓冲...01/30
• Microsoft Visual C++ 资源文件含远程栈溢出漏洞01/27

外壳代码：

• Windows Media Encoder wmex.dll ActiveX BOF Exploit (MS08-053...09/16
• Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF Ex...08/27
• Belkin wireless G router + ADSL2 modem Auth Bypass Exploit08/27
• Dana IRC 1.4a Remote Buffer Overflow Exploit08/27
• Anzio Web Print Object <= 3.2.30 ActiveX Buffer Overflow Exp...08/21
• FlashGet 1.9.0.1012 (FTP PWD Response) BOF Exploit (safeseh)...08/18
• IntelliTamper 2.07/2.08 Beta 4 A HREF Remote Buffer Overflow...08/14
• IntelliTamper 2.07 (imgsrc) Remote Buffer Overflow Exploit08/04
• NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow E...08/01
• Shellcode学习之栈溢出原理初探07/31
• IntelliTamper 2.07 (server header) Remote Code Execution Exp...07/25
• IntelliTamper 2.07 (map file) Local Arbitrary Code Execution...07/22

远程漏洞：

• Femitter FTP Server 1.x Multiple Vulnerabilities (post auth)...12/23
• Racer 0.5.3b5 Remote Stack Buffer Overflow Exploit05/13
• Sysax Multi Server 4.3 Remote Arbitrary Delete Files Exploit...05/13
• Telnet-Ftp Service Server v1.x Multiple Vulnerabilities (pos...05/13
• Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exp...04/01
• XBMC 8.10 (Get Request) Remote Buffer Overflow Exploit (win)...04/01
• XBMC 8.10 (takescreenshot) Remote Buffer Overflow Exploit04/01
• XBMC 8.10 (get tag from file name) Remote Buffer Overflow Ex...04/01
• NOKIA Siemens FlexiISN 3.1 Multiple Auth Bypass Vulnerabilit...03/30
• Amaya 11.1 W3C Editor/Browser (defer) Stack Overflow Exploit...03/30
• FreeSSHd 1.2.1 (rename) Remote Buffer Overflow Exploit (SEH)...03/27
• IncrediMail 5.86 (XSS) Script Execution Exploit03/24

脚本攻防：

• TotalCalendar 2.4 (inc_dir) Remote File Inclusion Vulnerabil...12/23
• WebFileExplorer 3.1 (Auth Bypass) SQL Injection Vulnerabilit...04/28
• Dynamic Flash Forum 1.0 Beta Multiple Remote Vulnerabilities...04/28
• Absolute Form Processor XE-V 1.5 (Auth Bypass) SQL Injection...04/28
• PHP-Agenda <= 2.2.5 Remote File Overwriting Vulnerabilities04/28
• FunGamez rc1 (AB/LFI) Multiple Remote Vulnerabilities04/27
• Dokeos LMS <= 1.8.5 (whoisonline.php) PHP Code Injection Exp...04/25
• MixedCMS 1.0b (LFI/SU/AB/FD) Multiple Remote Vulnerabilities...04/25
• Studio Lounge Address Book 2.5 Authentication Bypass Vulnera...04/25
• I-Rater Pro/Plantinum v4 (Auth Bypass) SQL Injection Vulnera...04/25
• FreznoShop 1.3.0 (id) Remote SQL Injection Vulnerability04/21
• e107 Plugin userjournals_menu (blog.id) SQL Injection Vulner...04/21

本地漏洞：

• VUPlayer <= 2.49 .cue File Universal Buffer Overflow Exploit...03/28
• Winamp <= 5.541 Skin Universal Buffer Overflow Exploit03/24
• Media Commands .m3l File Local Buffer Overflow Exploit03/24
• Apple MACOS X xnu <= 1228.x Local Kernel Memory Disclosure E...03/16
• Woltlab Burning Board 3.0.x Multiple Remote Vulnerabilities03/11
• YACS CMS 8.11 update_trailer.php Remote File Inclusion Vulne...03/10
• SAS Hotel Management System (myhotel_info.asp) SQL Injection...03/10
• simplePMS CMS 0.1.3a LFI / Remote Command Execution Exploit03/10
• Merak Media PLayer 3.2 m3u File Local Buffer Overflow Exploi...03/04
• Oracle 10g MDSYS.SDO_TOPO_DROP_FTBL SQL Injection Exploit (m...03/03
• FreeBSD 7.0-RELEASE Telnet Daemon Local Privilege Escalation...02/24
• dBpowerAMP Audio Player 2 .PLS File Local Buffer Overflow Ex...02/23

DOS、POC：

• [图文]Mozilla Firefox 3.0.10 (KEYGEN) Remote Denial of Servi...12/23
• [图文]Microsoft IIS 6.0 WebDAV Remote Authentication Bypass ...12/23
• [图文]SAP GUI 6.4 ActiveX (Accept) Remote Buffer Overflow Po...06/09
• [图文]PeaZIP <= 2.6.1 Compressed Filename Command Injection ...06/06
• Apache mod_dav / svn Remote Denial of Service Exploit06/02
• [图文]Safari RSS feed:// Buffer Overflow via libxml2 Exploit...05/27
• [图文]Mozilla Firefox (unclamped loop) Denial of Service Exp...05/27
• [图文]Sorinara Streaming Audio Player 0.9 (.m3u) Local Stack...05/06
• [图文]32bit FTP (09.04.24) Banner Remote Buffer Overflow PoC...05/06
• [图文]Adobe Acrobat Reader 8.1.2 – 9.0 getIcon() Memory Cor...05/05
• [图文]Quick 'n Easy Mail Server 3.3 (Demo) Remote Denial of ...05/05
• [图文]EW-MusicPlayer 0.8 (.m3u file) Local Buffer Overflow P...05/05

漏洞修复：

• Windows优化大师 优化大师官方网站 系统软件漏洞修复12/23
• 360安全中心 - 漏洞修复|免费杀毒|网络安全|电脑安全|杀木马|流氓...12/23
• QQ医生 是专门针对QQ帐号密码被盗问题所提供的一款盗号木马查杀及...05/13