CVE-2024-11477: 7-Zip Vulnerability Allows Remote Code Execution, Update Now!CVE-2024-11477: 7-Zip Vulnerability Allows Remote Code Execution, Update Now! 🔠Access to This Vulnerability Report Requires Support This article is available to verified supporters only - contribute to read the full report
Sunburstã®æ‚ªå¤¢å†ã³ï¼Ÿã€€SolarWindsã®ãƒ•ã‚¡ã‚¤ãƒ«è»¢é€ã‚µãƒ¼ãƒ“スã«æ·±åˆ»ãªè„†å¼±æ€§
ã‚»ã‚ュリティä¼æ¥Rapid7ã®ã‚¹ãƒ†ã‚£ãƒ¼ãƒ–ン・フューアæ°ï¼ˆãƒ—リンシパル・セã‚ュリティリサーãƒãƒ£ãƒ¼ï¼‰ã®ãƒ–ãƒã‚°æŠ•ç¨¿ã«ã‚ˆã‚‹ã¨ï¼ˆæ³¨1)ã€ç ”究者ãŸã¡ãŒå†ç¾ã—ãŸSolarWindsã®ãƒ•ã‚¡ã‚¤ãƒ«è»¢é€ã‚µãƒ¼ãƒ“ス「Serv-Uã€ã®è„†å¼±ï¼ˆãœã„ã˜ã‚ƒã)性ã¯ã€éžå¸¸ã«æ‚ªç”¨ã—ã‚„ã™ã„é‡å¤§ãªã‚‚ã®ã ã¨ã„ã†ã€‚åŒæ°ã¯ã€2024å¹´6月11日(ç¾åœ°æ™‚é–“ã€ä»¥ä¸‹åŒï¼‰ã«ã€Œä¼æ¥ã¯ã“ã®è„†å¼±æ€§ã«ç›´ã¡ã«ãƒ‘ッãƒã‚’当ã¦ã‚‹ã¹ãã ã€ã¨ä¸»å¼µã—ãŸã€‚ Sunburstã®æ‚ªå¤¢å†ã³ï¼Ÿã€€SolarWindsã®ãƒ•ã‚¡ã‚¤ãƒ«è»¢é€ã‚µãƒ¼ãƒ“スã«é‡å¤§ãªè„†å¼±æ€§ ディレクトリトラãƒãƒ¼ã‚µãƒ«ã®è„†å¼±æ€§ã§ã‚る「CVE-2024-28995ã€ã¯ï¼ˆæ³¨2)ã€èªè¨¼ã•ã‚Œã¦ã„ãªã„攻撃者ãŒã‚µãƒ¼ãƒã®æ©Ÿå¯†ãƒ•ã‚¡ã‚¤ãƒ«ã‚’èªã¿å–ã‚‹ã“ã¨ã‚’å¯èƒ½ã«ã™ã‚‹ã€‚ã“ã®è„†å¼±æ€§ã®å…±é€šè„†å¼±æ€§è©•ä¾¡ã‚·ã‚¹ãƒ†ãƒ (CVSS)ã«ãŠã‘るスコアã¯8.6ã 。 åŒè„†å¼±æ€§ã®æ‚ªç”¨ã¯ç¾çŠ¶ç¢ºèªã•ã‚Œã¦ã„ãªã„ãŒã€Rapid7ã®ç ”究者ã¯ã€ŒçŠ¶æ³ã¯ã™ãã«ã§ã‚‚変ã‚ã‚‹å¯èƒ½æ€§ãŒã‚ã‚‹ã€ã¨è¦
Fortinet製å“ã®è„†å¼±æ€§ã‹ã‚‰è€ƒãˆã‚‹ã€€ã‚»ã‚ュリティ対ç–ã¯ã€ŒNデイã€ã«ç›®ã‚’å‘ã‘よ
Fortinetã®è¤‡æ•°è£½å“ã«ãŠã‘る管ç†ç”»é¢ã®è„†å¼±æ€§ï¼ˆCVE-2022-40684)ãŒè©±é¡Œã‚’集ã‚ã¦ã„ã¾ã™ã€‚æ—¢ã«ã‚µã‚¤ãƒãƒ¼æ”»æ’ƒã«ã¤ã„ã¦ã®PoCも公開ã•ã‚Œã¦ã„ã‚‹ãŸã‚ã€å–«ç·Šã®å¯¾ç–ãŒæ±‚ã‚られã¦ã„ã¾ã™ã€‚ä¼æ¥ãŒä»Šã™ãã§ãã‚‹ã“ã¨ã¨ã¯ä½•ã§ã—ょã†ã‹ã€‚ 「攻撃者ã®è¦–点ã«ç«‹ã¤ã€ã“ã¨ã¯ã€ã‚»ã‚ュリティ対ç–ã®ç¬¬ä¸€æ©ã ã¨æ€ã£ã¦ã„ã¾ã™ã€‚攻撃者ã¯ç„¡é§„ãªã“ã¨ã‚’ã›ãšã€ã‚ˆã‚Šæœ‰åŠ¹ã§ã€Œã‚‚ã†ã‹ã‚‹ã€æ”»æ’ƒã‚’仕掛ã‘ã¦ãã‚‹ã¯ãšã§ã™ã®ã§ãã®è¦–点ã§å¯¾ç–を考ãˆã‚‹å¿…è¦ãŒã‚ã‚‹ã§ã—ょã†ã€‚ 攻撃å´ã¯æ™‚é–“ã‚’é¸ã°ãšã€è±Šå¯Œãªãƒžã‚·ãƒ³ãƒªã‚½ãƒ¼ã‚¹ã¨ã‚らゆる手段ã§æ”»æ’ƒã‚’仕掛ã‘ã¦ãã¾ã™ã€‚è¿‘å¹´ã¯ã€ŒRaaSã€ï¼ˆRansomware as a Service)ã¨ã„ã£ãŸã‚µã‚¤ãƒãƒ¼æ”»æ’ƒç”¨ã«æœ€é©åŒ–ã•ã‚ŒãŸãƒ—ラットフォームãŒå‡ºå›žã£ã¦ãŠã‚Šã€ã‚¹ã‚ルãŒãªãã¦ã‚‚容易ã«æ”»æ’ƒã‚’実行ã§ãるよã†ã«ãªã£ã¦ãã¦ã„ã¾ã™ã€‚ ã¤ã¾ã‚Šã€IPアドレスã®ç«¯ã‹ã‚‰ç«¯ã¾ã§ã‚µã‚¤ãƒãƒ¼æ”»æ’ƒã‚’実行ã—ã€ãã®ä¸ã®ä¸€ã¤ã§ã‚‚攻撃ã«æˆåŠŸã™ã‚Œã°ã€ãã‚ŒãŒ
ニトリã€ä¸æ£ã‚¢ã‚¯ã‚»ã‚¹ã§13万2000件ã®å€‹äººæƒ…å ±æµå‡ºã‹ã€€ãƒªã‚¹ãƒˆåž‹æ”»æ’ƒã§
家具大手ã®ãƒ‹ãƒˆãƒªã¯9月20æ—¥ã€ã‚¹ãƒžãƒ¼ãƒˆãƒ•ã‚©ãƒ³ã‚¢ãƒ—リ「ニトリアプリã€ã«ãŠã„ã¦ä¸æ£ã‚¢ã‚¯ã‚»ã‚¹ãŒç™ºç”Ÿã—ãŸã¨ç™ºè¡¨ã—ãŸã€‚ç´„13万2000アカウントãŒä¸æ£ãƒã‚°ã‚¤ãƒ³ã‚’å—ã‘ã€å€‹äººæƒ…å ±ã®ä¸€éƒ¨ãŒæµå‡ºã—ãŸå¯èƒ½æ€§ãŒã‚ã‚‹ã¨ã—ã¦ã„る。 ä¸æ£ãƒã‚°ã‚¤ãƒ³ã¯9月15æ—¥ã‹ã‚‰20æ—¥ã¾ã§ç™ºç”Ÿã€‚19æ—¥ã«æµå‡ºãŒåˆ¤æ˜Žã—ãŸã¨ã„ã†ã€‚対象ユーザーã¯ã€ãƒ‹ãƒˆãƒªãƒãƒƒãƒˆï¼ãƒ‹ãƒˆãƒªã‚¢ãƒ—リï¼ã‚·ãƒžãƒ›ã‚¢ãƒ—リã§ä¼šå“¡ç™»éŒ²ã—ãŸãƒ¦ãƒ¼ã‚¶ãƒ¼ã®ä»–ã€ã‚·ãƒžãƒ›ãƒãƒƒãƒˆã§ãƒ‹ãƒˆãƒªãƒã‚¤ãƒ³ãƒˆã®åˆ©ç”¨æ‰‹ç¶šãã‚’ã—ãŸãƒ¦ãƒ¼ã‚¶ãƒ¼ã€‚ 攻撃手法ã¯ã€ãƒ‹ãƒˆãƒªä»¥å¤–ã®ã‚µãƒ¼ãƒ“スã‹ã‚‰æµå‡ºã—ãŸãƒ¦ãƒ¼ã‚¶ãƒ¼IDã¨ãƒ‘スワードを使ã£ã¦ä¸æ£ãƒã‚°ã‚¤ãƒ³ã‚’仕掛ã‘る「リスト型アカウントãƒãƒƒã‚ングã€ï¼ˆãƒªã‚¹ãƒˆåž‹æ”»æ’ƒï¼‰ã¨æŽ¨æ¸¬ã€‚ニトリãƒãƒƒãƒˆã®ãƒ‹ãƒˆãƒªã‚¢ãƒ—リèªè¨¼ãƒ—ãƒã‚°ãƒ©ãƒ ã«å¯¾ã—ã¦ä»•æŽ›ã‘られãŸã¨ã™ã‚‹ã€‚ æµå‡ºã—ãŸå¯èƒ½æ€§ã®ã‚ã‚‹å€‹äººæƒ…å ±ã¯ã€ãƒ¡ãƒ¼ãƒ«ã‚¢ãƒ‰ãƒ¬ã‚¹ã€ãƒ‘スワードã€ä¼šå“¡ç•ªå·ã€æ°åã€ä½æ‰€ã€é›»è©±ç•ªå·ã€æ€§åˆ¥ã€ç”Ÿå¹´æœˆæ—¥ã€å»ºç‰©ç¨®åˆ¥ï¼ˆæˆ¸å»ºï¼é›†åˆä½å®…)ã€ã‚¨ãƒ¬ãƒ™ãƒ¼ã‚¿ãƒ¼ã®æœ‰ç„¡
Follina — a Microsoft Office code execution vulnerability
Two days ago, on May 27th 2022, Nao_sec identified an odd looking Word document in the wild, uploaded from an IP address in Belarus. This turned out to be a zero day vulnerability in Office and/or Windows. The document uses the Word remote template feature to retrieve a HTML file from a remote webserver, which in turn uses the ms-msdt MSProtocol URI scheme to load some code and execute some PowerS
JVNVU#96577897: 三è±é›»æ©Ÿè£½FA製å“ã«ãŠã‘る複数ã®è„†å¼±æ€§
MELSEC iQ-Fシリーズ FX5U(C) CPUユニット 全機種 å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ FX5UJ CPUユニット 全機種 å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ MELSEC iQ-Rシリーズ R00/01/02CPU å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ R04/08/16/32/120(EN)CPU å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ R08/16/32/120SFCPU å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ R08/16/32/120PCPU å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ R08/16/32/120PSFCPU å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ R16/32/64MTCPU å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ RJ71GN11-T2 å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ RJ71GN11-EIP å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ RJ71C24(-R2/R4) å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ RJ71EN71 å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ RJ71GF11-T2 å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ RJ71GP21(S)-SX å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ RJ72GF15-T2 å…¨ãƒãƒ¼ã‚¸ãƒ§ãƒ³ MELSEC Qシリーズ Q03UDECPUã€Q04/
Spring4Shell Details and Exploit Analysis
Exploit code for Spring core RCE aka Spring4Shell dropped online. Update as of 31st March: Spring has Confirmed the RCE in Spring Framework. The team has just published the statement along with the mitigation guides for the issue. Now, this vulnerability can be tracked as CVE-2022-22965. Initially, it was started on 30th March, the first notification of the vulnerability was hinted at by the leade
数百万å°ã®IoTや産æ¥ç”¨ãƒ‡ãƒã‚¤ã‚¹ã«å½±éŸ¿ã‚’ãŠã‚ˆã¼ã™è„†å¼±æ€§ã€ŒNAME:WRECKã€
IoTや産æ¥ç”¨ãƒ‡ãƒã‚¤ã‚¹å‘ã‘ã«ã‚»ã‚ュリティソリューションをæä¾›ã™ã‚‹ForescoutãŒã€ã€ŒNAME:WRECKã€ã¨å‘¼ã°ã‚Œã‚‹æ•°ç™¾ä¸‡å°ã®IoTや産æ¥ç”¨ãƒ‡ãƒã‚¤ã‚¹ã«å½±éŸ¿ã‚’ãŠã‚ˆã¼ã™å¯èƒ½æ€§ã®ã‚る脆弱性ã®å˜åœ¨ã‚’å ±å‘Šã—ã¦ã„ã¾ã™ã€‚ NAME:WRECK - Forescout https://www.forescout.com/research-labs/namewreck/ NAME:WRECK vulnerabilities impact millions of smart and industrial devices | The Record by Recorded Future https://therecord.media/namewreck-vulnerabilities-impact-millions-of-smart-and-industrial-devices/ How the NAME:W
Ubuntuã«ç‰¹æ¨©ãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚’誰ã§ã‚‚ç°¡å˜ã«ä½œæˆã§ãã¦ã—ã¾ã†è„†å¼±æ€§ãŒè¦‹ã¤ã‹ã‚‹
Linuxディストリビューションã¨ã—ã¦ãƒˆãƒƒãƒ—シェアを誇るUbuntuã«ã€æ¨™æº–ユーザーã‹ã‚‰ç‰¹æ¨©ãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚’ç°¡å˜ã«ä½œæˆã§ãã¦ã—ã¾ã†è„†å¼±æ€§ãŒè¦‹ã¤ã‹ã‚Šã¾ã—ãŸã€‚ How to get root on Ubuntu 20.04 by pretending nobody’s /home - GitHub Security Lab https://securitylab.github.com/research/Ubuntu-gdm3-accountsservice-LPE Ubuntu fixes bugs that standard users could use to become root | Ars Technica https://arstechnica.com/information-technology/2020/11/ubuntu-fixes-bugs-that-standard-users
Appleã€ãƒã‚°å ±é…¬é‡‘プãƒã‚°ãƒ©ãƒ を全ユーザーã«å…¬é–‹ã€œå ±é…¬ã¯æœ€å¤§1å„„6,000万円 - iPhone Mania
Appleã€ãƒã‚°å ±é…¬é‡‘プãƒã‚°ãƒ©ãƒ を全ユーザーã«å…¬é–‹ã€œå ±é…¬ã¯æœ€å¤§1å„„6,000万円 2019 12/21 Apple製å“ã®æœªç™ºè¦‹ã®è„†å¼±æ€§ã‚’見ã¤ã‘ã‚‹ã¨å ±é…¬é‡‘ãŒã‚‚らãˆã‚‹Appleã®ãƒã‚°å ±é…¬é‡‘プãƒã‚°ãƒ©ãƒ ã¯ã€ã“ã‚Œã¾ã§æ‹›å¾…制ã¨ãªã£ã¦ã„ã¾ã—ãŸãŒã€èª°ã§ã‚‚ãƒã‚°ã®å ±å‘Šã‚’è¡Œã„ã€å ±é…¬ãŒã‚‚らãˆã‚‹ã‚ˆã†ã«ãªã‚Šã¾ã—ãŸã€‚プãƒã‚°ãƒ©ãƒ ã®å¯¾è±¡ã¨ãªã£ã¦ã„ã‚‹ã®ã¯ã€æ¨™æº–構æˆã®iOSã€iPadOSã€macOSã€tvOSã€watchOSã¨ã€ä¸€èˆ¬å‘ã‘ã«è²©å£²ã•ã‚Œã¦ã„る最新ã®ãƒãƒ¼ãƒ‰ã‚¦ã‚§ã‚¢ã§ã™ã€‚ 特定ã®ãƒ™ãƒ¼ã‚¿ç‰ˆå†…ã®ãƒã‚°ç™ºè¦‹ã«ã¯å ±é…¬ãŒ50%増 Appleã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å ±é…¬é‡‘ã‚’å—ã‘å–ã‚‹ã«ã¯ã€æ¬¡ã®æ¡ä»¶ãŒå¿…è¦ã¨ãªã‚Šã¾ã™ã€‚ ãã®è„†å¼±æ€§ã®ã€Apple製å“ã‚»ã‚ュリティ(Apple Product Security)ã¸ã®ç¬¬ä¸€å ±å‘Šè€…ã§ã‚ã‚‹ã“㨠修æ£ã•ã‚Œã¦ã„ãªã„脆弱性ã®è¨¼æ˜Žã‚’å«ã‚€æ˜Žç¢ºãªå ±å‘Šæ›¸ã‚’æ出ã™ã‚‹ã“㨠AppleãŒãƒã‚°ä¿®æ£ã®ãŸã‚ã®é–¢é€£ã‚¢ãƒƒãƒ—デートをå«ã‚€ã‚»ã‚ュリテ
複数㮠SSL VPN 製å“ã®è„†å¼±æ€§ã«é–¢ã™ã‚‹æ³¨æ„å–šèµ·
JPCERT-AT-2019-0033 JPCERT/CC 2019-09-02(æ–°è¦) 2019-09-06(æ›´æ–°) I. 概è¦JPCERT/CC ã§ã¯ã€è¤‡æ•°ã® SSL VPN 製å“ã®è„†å¼±æ€§ã«ã¤ã„ã¦ã€è„†å¼±æ€§ã«å¯¾ã™ã‚‹å®Ÿè¨¼ã‚³ãƒ¼ãƒ‰ãªã©ã®è©³ç´°ãªæƒ…å ±ãŒå…¬è¡¨ã•ã‚Œã¦ã„ã‚‹ã“ã¨ã‚’確èªã—ã¦ã„ã¾ã™ã€‚ - Palo Alto Networks (CVE-2019-1579) - Fortinet (CVE-2018-13379) - Pulse Secure (CVE-2019-11510) ã“れらã®è„†å¼±æ€§ã‚’悪用ã•ã‚ŒãŸå ´åˆã«ã€æ”»æ’ƒè€…ãŒãƒªãƒ¢ãƒ¼ãƒˆã‹ã‚‰ä»»æ„ã®ã‚³ãƒ¼ãƒ‰ã‚’実行ã§ãã‚‹å¯èƒ½æ€§ (CVE-2019-1579) ã‚„ã€ä»»æ„ã®ãƒ•ã‚¡ã‚¤ãƒ«ã‚’èªã¿å–ã‚Šã€èªè¨¼æƒ…å ±ãªã©ã®æ©Ÿå¾®ãªæƒ…å ±ã‚’å–å¾—ã™ã‚‹å¯èƒ½æ€§ (CVE-2018-13379, CVE-2019-11510) ãŒã‚ã‚Šã¾ã™ã€‚ãªãŠã€è„†å¼±æ€§ã®å ±å‘Šè€…ã‹ã‚‰ã¯ã€ãã‚Œãžã‚Œã®è£½å“ã«ã¤ã„ã¦ã€ä¸Šè¨˜
100万å°ä»¥ä¸Šã®ProFTPdサーãƒã«è„†å¼±æ€§ã€ã‚¢ãƒƒãƒ—デートã¾ã§ã¯å›žé¿ç–ã‚’
Fossbytesã¯7月25æ—¥(米国時間)ã€ã€Œ1 Million+ ProFTPD Servers Vulnerable To Remote Code Execution Attacksã€ã«ãŠã„ã¦ã€FTPサーãƒã€ŒProFTPdã€ã«è„†å¼±æ€§ãŒå˜åœ¨ã™ã‚‹ã¨ä¼ãˆãŸã€‚ ドイツã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ç ”ç©¶è€…ã§ã‚ã‚‹Tobias Madelæ°ãŒã€mod_copyモジュールã«è„†å¼±æ€§ãŒå˜åœ¨ã—ã¦ãŠã‚Šã€æ›¸ãè¾¼ã¿æ¨©é™ã‚’æŒã£ã¦ã„ãªã„ユーザーãŒæ¨©é™ã‚’超ãˆãŸæ“作ãŒã§ãã¦ã—ã¾ã†ã“ã¨ã‚’明らã‹ã«ã—ãŸã€‚。脆弱性ã«é–¢ã™ã‚‹æƒ…å ±ã¯æ¬¡ã®ãƒšãƒ¼ã‚¸ã«ã¾ã¨ã¾ã£ã¦ã„る。 ProFTPd CVE-2019-12815 - tbspace.de ProFTPd CVE-2019-12815 - tbspace.de ProFTPdã¯äººæ°—ã®é«˜ã„FTPサーãƒã®1ã¤ã§ã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã®FTPサーãƒã¨ã—ã¦å«ã¾ã‚Œã¦ã„ã‚‹ã“ã¨ãŒå¤šã„。ã¾ãŸã€è„†å¼±æ€§ãŒå˜åœ¨ã™ã‚‹ã¨ã•ã‚Œã‚‹mod_copy
FAX番å·ã ã‘ã§è¤‡åˆæ©ŸãŒä¹—ã£å–られる“Faxploitâ€è„†å¼±æ€§å…¬è¡¨ (1/2)
ITU-TãŒå®šã‚ãŸFAX通信è¦æ ¼ã€ŒT.30ã€ã«å˜åœ¨ã™ã‚‹è„†å¼±æ€§ã‚’利用ã™ã‚Œã°ã€ã‚¿ãƒ¼ã‚²ãƒƒãƒˆã®FAX番å·ã‚’知ã£ã¦ã„ã‚‹ã ã‘ã§ãƒãƒƒãƒ•ã‚¡ã‚ªãƒ¼ãƒãƒ¼ãƒ•ãƒãƒ¼ã‚’引ãèµ·ã“ã—ã€ãƒ‡ã‚¸ã‚¿ãƒ«è¤‡åˆæ©Ÿï¼ˆMFP)を乗ã£å–ã‚‹ã“ã¨ãŒã§ãる。ã•ã‚‰ã«ãƒ©ãƒ³ã‚µãƒ ウェア「WannaCryã€ã§ã‚‚使ã‚ã‚ŒãŸè„†å¼±æ€§æ”»æ’ƒãƒ„ールãªã©ã‚’組ã¿åˆã‚ã›ã‚Œã°ã€è¤‡åˆæ©Ÿã‚’è¸ã¿å°ã«ã—ã¦ã‚ªãƒ•ã‚£ã‚¹ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯å†…ã®PCやサーãƒãƒ¼ã«ã‚‚侵入を拡大ã—ã€æ©Ÿå¯†ãƒ‡ãƒ¼ã‚¿ã‚’ç›—ã¿å‡ºã™ã“ã¨ãªã©ã‚‚å¯èƒ½ã«ãªã‚‹â€•â€•ã€‚ 2018å¹´8月12æ—¥ã€ç±³å›½ãƒ©ã‚¹ãƒ™ã‚¬ã‚¹ã§é–‹å‚¬ã•ã‚ŒãŸãƒãƒƒã‚«ãƒ¼ã‚¤ãƒ™ãƒ³ãƒˆã€ŒDEF CON 26ã€ã§ã¯ã€ã“ã†ã—ãŸæ”»æ’ƒæ‰‹æ³•ã‚’紹介ã™ã‚‹è¬›æ¼”「What the Fax!?ã€ãŒè¡Œã‚ã‚ŒãŸï¼ˆè¬›æ¼”タイトルã¯ãƒãƒƒãƒˆã‚¹ãƒ©ãƒ³ã‚°ã€ŒWTFï¼What the Fuckã€ã®ã‚‚ã˜ã‚Šã )。講演を行ã£ãŸCheck Point Software Technologiesã®ã‚»ã‚ュリティリサーãƒãƒ£ãƒ¼ã€ãƒ¤ãƒ‹ãƒ•ãƒ»ãƒãƒ«ãƒžã‚¹æ°ã¨ã‚¨ã‚¤ãƒ¤ãƒ«ãƒ»ã‚¤ãƒˆ
脆弱性診æ–ツール OWASP ZAP vs 脆弱性ã らã‘ã®WebアプリケーションEasyBuggy - Qiita
脆弱性診æ–ツール「OWASP ZAPã€ã¯ã€è„†å¼±æ€§ã らã‘ã®Webアプリケーション「EasyBuggyã€ã®è„†å¼±æ€§ã‚’ã©ã®ç¨‹åº¦æ¤œå‡ºã§ãã‚‹ã§ã—ょã†ã‹ï¼Ÿ 今回ã¯æ¬¡ã®åŸºæœ¬çš„ãªæ©Ÿèƒ½ã§æ¤œè¨¼ã—ã¦ã¿ã¾ã—ãŸã€‚ 簡易スã‚ャン:Webアプリケーションã®ãƒ«ãƒ¼ãƒˆã®URLを入力ã™ã‚‹ã¨ã€OWASP ZAPãŒãã®é…下をクãƒãƒ¼ãƒ«ã—ã¦è„†å¼±æ€§ãŒã‚ã‚‹ã‹è¨ºæ–ã™ã‚‹ã€‚ é™çš„スã‚ャン:ブラウザ上ã§Webアプリケーションã®åŸºæœ¬çš„ãªæ©Ÿèƒ½ã‚’一通り手作æ¥ã§å‹•ã‹ã™ã¨ã€OWASP ZAPãŒãƒ¬ã‚¹ãƒãƒ³ã‚¹ã®å†…容ãªã©ã‚’検査ã™ã‚‹ã€‚ 動的スã‚ャン:é™çš„スã‚ャンã§è¡Œã£ãŸæ“作をã€OWASP ZAPãŒãƒªã‚¯ã‚¨ã‚¹ãƒˆãƒ‘ラメータを変ãˆã‚‹ãªã©ã—ã¦å†å®Ÿè¡Œã—ã€è¨ºæ–ã™ã‚‹ã€‚ ãªãŠã€æ¤œè¨¼ã§è¡Œã£ãŸä½œæ¥å†…容もã“ã®ãƒšãƒ¼ã‚¸è¼‰ã›ã¦ã„ã¾ã™ã®ã§ã€OWASP ZAPを試ã—ã¦ã¿ãŸã„æ–¹ã¯å‚考ã«ã—ã¦ã¿ã¦ä¸‹ã•ã„。 ã¯ã˜ã‚ã« OWASP ZAPã¨ã¯ ãã®å‰ã«OWASP ZAPã«ã¤ã„ã¦ç°¡å˜ã«èª¬æ˜Žã—ã¦ãŠãã¾ã™ã€‚「OWAS
ファーウェイ製ルータã®è„†å¼±æ€§ã‚’ç‹™ã†ã€ŒSatoriã€ãƒœãƒƒãƒˆãƒãƒƒãƒˆã®ã‚³ãƒ¼ãƒ‰ãŒå…¬é–‹ã« - ZDNet Japan
Huawei(ファーウェイ)ã®ãƒ«ãƒ¼ã‚¿ã‚’標的ã¨ã—ã¦å®Ÿè¡Œå¯èƒ½ãªã‚¨ã‚¯ã‚¹ãƒ—ãƒã‚¤ãƒˆã‚³ãƒ¼ãƒ‰ãŒã€ã‚ã‚‹ãƒãƒƒã‚«ãƒ¼ã«ã‚ˆã£ã¦ãƒ›ãƒªãƒ‡ãƒ¼ã‚·ãƒ¼ã‚ºãƒ³ä¸ã«å…¬é–‹ã•ã‚ŒãŸã€‚ã“ã®ã‚³ãƒ¼ãƒ‰ã¯ã€åŒãƒ«ãƒ¼ã‚¿ã‚’標的ã«ã—ãŸã„ã€ã‚ã‚‹ã„ã¯ãƒœãƒƒãƒˆã®ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ã‚’増強ã—ãŸã„ã¨è€ƒãˆã¦ã„るサイãƒãƒ¼æ”»æ’ƒè€…ã«å¯¾ã—ã¦ç„¡å„Ÿã§å…¬é–‹ã•ã‚ŒãŸã€‚åŒã‚³ãƒ¼ãƒ‰ã¯ã€ŒSatoriã€ãƒœãƒƒãƒˆãƒãƒƒãƒˆã«ã‚ˆã£ã¦å®Ÿéš›ã«åˆ©ç”¨ã•ã‚Œã¦ã„る。 NewSky Securityã®ãƒ—リンシパルリサーãƒãƒ£ãƒ¼ã§ã‚ã‚‹Ankit Anubhavæ°ã«ã‚ˆã‚‹ã¨ã€ã“ã®ã‚¨ã‚¯ã‚¹ãƒ—ãƒã‚¤ãƒˆã‚³ãƒ¼ãƒ‰ã¯ãƒ›ãƒªãƒ‡ãƒ¼ã‚·ãƒ¼ã‚ºãƒ³ä¸ã«Pastebinã«æŠ•ç¨¿ã•ã‚ŒãŸã¨ã„ã†ã€‚ Miraiã®ä¸€èˆ¬çš„ãªäºœç¨®ã¯ã€IoT機器ã®è„†å¼±æ€§ã‚’スã‚ャンã—ã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã®èªè¨¼æƒ…å ±ã‚’ç”¨ã„る一方ã€Satoriã¯Huaweiã®æ©Ÿå™¨ã«å˜åœ¨ã™ã‚‹ã€ŒCVE-2017-17215ã€ã‚’å«ã‚€æ—¢çŸ¥ã®è„†å¼±æ€§ã‚’悪用ã™ã‚‹ã€‚ NewSky Securityã«ã‚ˆã‚‹ã¨ã€åŒãƒžãƒ«ã‚¦ã‚§ã‚¢ã‚³ãƒ¼ãƒ‰ã¯Satoriボットãƒãƒƒ
リリースã€éšœå®³æƒ…å ±ãªã©ã®ã‚µãƒ¼ãƒ“スã®ãŠçŸ¥ã‚‰ã›
最新ã®äººæ°—エントリーã®é…ä¿¡
j次ã®ãƒ–ックマーク
kå‰ã®ãƒ–ックマーク
lã‚ã¨ã§èªã‚€
eコメント一覧を開ã
oページを開ã
Apache Tomcatã®Apache Commons FileUploadã«ã‚µãƒ¼ãƒ“スé‹ç”¨å¦¨å®³ï¼ˆDoS)ã®è„†å¼±æ€§ | ScanNetSecurity
WordPress 用プラグイン Advanced Custom Fields ã«èªè¨¼æ¬ 如ã®è„†å¼±æ€§ | ScanNetSecurity
WD製NASã«è„†å¼±æ€§ã€ä»Šã™ããƒãƒƒãƒˆåˆ‡æ–を。フルリセットã§å…¨ãƒ‡ãƒ¼ã‚¿æ¶ˆå¤±
ä¼æ¥å‘ã‘「ウイルスãƒã‚¹ã‚¿ãƒ¼ã€è£½å“ã«å†ã³ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒˆãƒ©ãƒãƒ¼ã‚µãƒ«ã®è„†å¼±æ€§ï¼è„†å¼±æ€§ã‚’ã¤ã„ãŸæ”»æ’ƒã‚‚確èªã€ã§ãã‚‹ã ã‘æ—©ã“Critical Patchâ€ã®é©ç”¨ã‚’
https://jp.techcrunch.com/2018/01/11/2018-01-10-another-macos-password-prompt-can-be-bypassed-with-any-password-2/
{{#tags}}- {{label}}
{{/tags}}