Dig Security together —— 阅读、挖掘、评论,安全共进步。


注册账户的好处

・挖掘你感兴趣的故事
・分享你的观点
・找到志趣相投的朋友
・对已顶过的内容方便引用 ・悠然自乐在其中
Join
Login
Submit Story

Categories (共 17944 条)

View All
Alert
- Applications security
- Bugtraq
- Exploit from milw0rm
- Exploit from packetstorm
- SANS Handler's Diary
- Virus
- WHID
Attack Vector
- ActiveX
- Botnet
- Data loss
- DDoS
- Emerging Threat
- Iframe
- Insider
- Phishing
- Privacy
- Web defacement
- XSS
Cyber-War
Material
- Ebook
- Podcast
- Security Cartoon
- Tools
Olympics
People
- Why
- zhaol
Sector-Specific
- Banking, Finance & Insurance
- E-commerce & Retail
- Educational Institutions
- Energy, Power & Utilities
- Enterprises
- Government
- Telecommunications
Security Giant
- Cisco
- Google
- IBM
- Microsoft
- NSFOCUS
- Symantec
Security Industry
- Cloud
- Conference
- Jobs
- News
- startup
- web2.0
Security Services
- Incident Response
- ISMS
- IT Audit
- Regulatory Compliance
- Risk Management
- Security Awareness
- Threat Management
- Vulnerability Management
Standard
- BS 25999
- BS 31100
- CMMi
- COBIT
- ISO 20000
- ISO 27001
- ISO 38500

Tag Cloud

Comments

Chinese Security Community 		Most Recent    Top in 24 Hr    7days
 
View All    Add to Google  follow @2sec


1
digs
Malicious Web Site / Malicious Code: Waledac Independence Day Theme - New Campaign In The Wild
submitted by wanghongyang 3 hours ago (via securitylabs.websense.com)
Websense Security Labs™ ThreatSeeker™ Network has detected yet another new Waledac campaign theme in the wild. The new variant uses an Independence Day theme as a social engineering mechanism. The United States of America celebrates Independence Day on July 4 each year. The malicious emails that are sent use subjects and content related to Independence Day, Fourth of July and fireworks shows.
 
0 Comments - More Info - Bury - Highlight   Topic: Iframe
1
digs
星缘天空被植入恶意代码
submitted by wanghongyang 3 hours ago (via scanw.com)
发布时间:Fri Jul 3 2009 18:55:55 UTC+0800 最后更新时间:Fri Jul 3 2009 18:55:55 UTC+0800 ________________________________________ 知道创宇安全团队(KnownSec Team)于今天捕获 星缘天空(http://www.uccz.com/)被植入恶意代码。 阅读全文——共1774字
 
0 Comments - More Info - Bury - Highlight   Topic: Iframe
1
digs
徐州市科学技术局被植入恶意代码
submitted by wanghongyang 3 hours ago (via scanw.com)
发布时间:Fri Jul 3 2009 19:02:43 UTC+0800 最后更新时间:Fri Jul 3 2009 19:02:43 UTC+0800 ________________________________________ 知道创宇安全团队(KnownSec Team)于今天捕获 徐州市科学技术局(http://xstb.xsti.net/)被植入恶意代码。 阅读全文——共1355字
 
0 Comments - More Info - Bury - Highlight   Topic: Iframe
1
digs
彝良县工商红盾信息网被植入恶意代码
submitted by wanghongyang 3 hours ago (via scanw.com)
发布时间:Sat Jul 4 2009 19:48:49 UTC+0800 最后更新时间:Sat Jul 4 2009 19:48:49 UTC+0800 ________________________________________ 知道创宇安全团队(KnownSec Team)于今天捕获 彝良县工商红盾信息网(http://ylaic.gov.cn/)被植入恶意代码。 阅读全文——共1682字
 
0 Comments - More Info - Bury - Highlight   Topic: Iframe
1
digs
甘肃徽县被植入恶意代码
submitted by wanghongyang 3 hours ago (via scanw.com)
发布时间:Sat Jul 4 2009 20:09:35 UTC+0800 最后更新时间:Sat Jul 4 2009 20:09:35 UTC+0800 ________________________________________ 知道创宇安全团队(KnownSec Team)于今天捕获 甘肃徽县(http://www.gansuhuixian.gov.cn/)被植入恶意代码。 阅读全文——共1414字
 
0 Comments - More Info - Bury - Highlight   Topic: Iframe
1
digs
axesstel-bypass.txt
submitted by wanghongyang 3 hours ago (via packetstormsecurity.org)
The Axesstel MV 410R protects from malicious input by leveraging javascript, allowing an attacker to bypass all of this easily. The device is also susceptible to permanent cross site scripting vulnerabilities.
 
0 Comments - More Info - Bury - Highlight   Topic: Exploit from packetstorm
1
digs
cve-2008-3531.c
submitted by wanghongyang 3 hours ago (via packetstormsecurity.org)
Local root exploit for FreeBSD nmount(). This affects FreeBSD 7.0-RELEASE and 7.0-STABLE.
 
0 Comments - More Info - Bury - Highlight   Topic: Exploit from packetstorm
1
digs
shopcartdx430-blindsql.txt
submitted by wanghongyang 3 hours ago (via packetstormsecurity.org)
Remote blind SQL injection exploit for ShopCartDx version 4.30 that leverages product_detail.php.
 
0 Comments - More Info - Bury - Highlight   Topic: Exploit from packetstorm
1
digs
shopcartdx430-sql.txt
submitted by wanghongyang 3 hours ago (via packetstormsecurity.org)
Remote SQL injection exploit for ShopCartDx version 4.30 that leverages product_detail.php. This particular vulnerability was priorly discovered but further research has been performed.
 
0 Comments - More Info - Bury - Highlight   Topic: Exploit from packetstorm
1
digs
soulseek157-psexec.txt
submitted by wanghongyang 3 hours ago (via packetstormsecurity.org)
Soulseek versions 157 NS below 13e and all versions of 156 suffer from a remote peer search code execution vulnerability.
 
0 Comments - More Info - Bury - Highlight   Topic: Exploit from packetstorm






©2008 2sec.org - All content for this site is under a Creative Commons license
About us  |  Contact us  |  FAQ  |  Feedback  |  Links  |  京ICP备07018489号