bakabtw/Cool-Y.github.io
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Site updated: 2021-05-20 19:38:36

Browse Source
This commit is contained in:
Cool-Y
2021-05-20 19:39:04 +08:00
parent e22434688b
commit 25fedf32a1
132 changed files with 5823 additions and 2490 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
2021/01/08/Dolphin-Attack/index.html
View File

@ -720,7 +720,7 @@
<a href="/archives/">
<span class="site-state-item-count">30</span>
<span class="site-state-item-count">31</span>
<span class="site-state-item-name">日志</span>
</a>
</div>
@ -780,12 +780,6 @@
<i class="fa fa-fw fa-instagram"></i>Instagram</a>
</span>
<span class="links-of-author-item">
<a href="/atom.xml" target="_blank" title="RSS">
<i class="fa fa-fw fa-fas fa-rss"></i>RSS</a>
</span>
</div>
@ -847,7 +841,7 @@
<i class="fa fa-area-chart"></i>
</span>
<span title="Site words total count">104.4k</span>
<span title="Site words total count">105.1k</span>
</div>

10
2021/01/08/Netgear-psv-2020-0211/index.html
View File

@ -847,7 +847,7 @@
<a href="/archives/">
<span class="site-state-item-count">30</span>
<span class="site-state-item-count">31</span>
<span class="site-state-item-name">日志</span>
</a>
</div>
@ -907,12 +907,6 @@
<i class="fa fa-fw fa-instagram"></i>Instagram</a>
</span>
<span class="links-of-author-item">
<a href="/atom.xml" target="_blank" title="RSS">
<i class="fa fa-fw fa-fas fa-rss"></i>RSS</a>
</span>
</div>
@ -974,7 +968,7 @@
<i class="fa fa-area-chart"></i>
</span>
<span title="Site words total count">104.4k</span>
<span title="Site words total count">105.1k</span>
</div>

10
2021/01/08/dolphin-attack-practice/index.html
View File

@ -642,7 +642,7 @@
<a href="/archives/">
<span class="site-state-item-count">30</span>
<span class="site-state-item-count">31</span>
<span class="site-state-item-name">日志</span>
</a>
</div>
@ -702,12 +702,6 @@
<i class="fa fa-fw fa-instagram"></i>Instagram</a>
</span>
<span class="links-of-author-item">
<a href="/atom.xml" target="_blank" title="RSS">
<i class="fa fa-fw fa-fas fa-rss"></i>RSS</a>
</span>
</div>
@ -769,7 +763,7 @@
<i class="fa fa-area-chart"></i>
</span>
<span title="Site words total count">104.4k</span>
<span title="Site words total count">105.1k</span>
</div>

10
2021/01/08/nvram-config/index.html
View File

@ -651,7 +651,7 @@
<a href="/archives/">
<span class="site-state-item-count">30</span>
<span class="site-state-item-count">31</span>
<span class="site-state-item-name">日志</span>
</a>
</div>
@ -711,12 +711,6 @@
<i class="fa fa-fw fa-instagram"></i>Instagram</a>
</span>
<span class="links-of-author-item">
<a href="/atom.xml" target="_blank" title="RSS">
<i class="fa fa-fw fa-fas fa-rss"></i>RSS</a>
</span>
</div>
@ -778,7 +772,7 @@
<i class="fa fa-area-chart"></i>
</span>
<span title="Site words total count">104.4k</span>
<span title="Site words total count">105.1k</span>
</div>

16
2021/03/02/DIR-802-OS-Command-Injection/index.html
View File

@ -98,7 +98,7 @@
<meta property="og:locale" content="zh-Hans">
<meta property="og:image" content="https://res.cloudinary.com/dozyfkbg3/image/upload/v1614665628/cve/carbon.png">
<meta property="og:image" content="https://res.cloudinary.com/dozyfkbg3/image/upload/v1614665899/cve/carbon_1.png">
<meta property="og:updated_time" content="2021-04-11T06:09:45.266Z">
<meta property="og:updated_time" content="2021-04-12T05:07:52.191Z">
<meta name="twitter:card" content="summary">
<meta name="twitter:title" content="DIR-802 OS Command Injection">
<meta name="twitter:description" content="提交个漏洞">
@ -387,7 +387,7 @@
</span>
<span title="字数统计">
373
384
</span>
@ -429,7 +429,7 @@
<h3 id="D-LINK-DIR-802-命令注入漏洞"><a href="#D-LINK-DIR-802-命令注入漏洞" class="headerlink" title="D-LINK DIR-802 命令注入漏洞"></a>D-LINK DIR-802 命令注入漏洞</h3><blockquote>
<p>by Cool</p>
</blockquote>
<h4 id="漏洞已提交厂商"><a href="#漏洞已提交厂商" class="headerlink" title="漏洞已提交厂商"></a>漏洞已提交厂商</h4><p><a href="https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10206" target="_blank" rel="noopener">https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10206</a></p>
<h4 id="漏洞已提交厂商"><a href="#漏洞已提交厂商" class="headerlink" title="漏洞已提交厂商"></a>漏洞已提交厂商</h4><p><a href="https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10206" target="_blank" rel="noopener">https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10206</a><br><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29379" target="_blank" rel="noopener">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29379</a></p>
<h4 id="漏洞类型"><a href="#漏洞类型" class="headerlink" title="漏洞类型"></a>漏洞类型</h4><p>CWE-78: Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)</p>
<h4 id="受影响设备及软件版本"><a href="#受影响设备及软件版本" class="headerlink" title="受影响设备及软件版本"></a>受影响设备及软件版本</h4><p>DIR-802 hardware revision Ax before v1.00b05<br><a href="https://pmdap.dlink.com.tw/PMD/GetAgileFile?itemNumber=FIR1300450&amp;fileName=DIR802_FW100b05.zip&amp;fileSize=6163759.0" target="_blank" rel="noopener">https://pmdap.dlink.com.tw/PMD/GetAgileFile?itemNumber=FIR1300450&amp;fileName=DIR802_FW100b05.zip&amp;fileSize=6163759.0</a>;</p>
<h4 id="漏洞概要"><a href="#漏洞概要" class="headerlink" title="漏洞概要"></a>漏洞概要</h4><p>DIR-802中存在一个命令注入漏洞攻击者可以通过精心制作的M-SEARCH数据包向UPnP注入任意命令。</p>
@ -631,7 +631,7 @@
<a href="/archives/">
<span class="site-state-item-count">30</span>
<span class="site-state-item-count">31</span>
<span class="site-state-item-name">日志</span>
</a>
</div>
@ -691,12 +691,6 @@
<i class="fa fa-fw fa-instagram"></i>Instagram</a>
</span>
<span class="links-of-author-item">
<a href="/atom.xml" target="_blank" title="RSS">
<i class="fa fa-fw fa-fas fa-rss"></i>RSS</a>
</span>
</div>
@ -758,7 +752,7 @@
<i class="fa fa-area-chart"></i>
</span>
<span title="Site words total count">104.4k</span>
<span title="Site words total count">105.1k</span>
</div>

14
2021/04/10/vm-escape1/index.html
View File

@ -654,6 +654,10 @@
<div class="post-nav-prev post-nav-item">
<a href="/2021/05/20/aflnw-blackbox/" rel="prev" title="利用AFL黑盒测试网络协议">
利用AFL黑盒测试网络协议 <i class="fa fa-chevron-right"></i>
</a>
</div>
</div>
@ -738,7 +742,7 @@
<a href="/archives/">
<span class="site-state-item-count">30</span>
<span class="site-state-item-count">31</span>
<span class="site-state-item-name">日志</span>
</a>
</div>
@ -798,12 +802,6 @@
<i class="fa fa-fw fa-instagram"></i>Instagram</a>
</span>
<span class="links-of-author-item">
<a href="/atom.xml" target="_blank" title="RSS">
<i class="fa fa-fw fa-fas fa-rss"></i>RSS</a>
</span>
</div>
@ -865,7 +863,7 @@
<i class="fa fa-area-chart"></i>
</span>
<span title="Site words total count">104.4k</span>
<span title="Site words total count">105.1k</span>
</div>

1183
2021/05/20/aflnw-blackbox/index.html Normal file
View File

File diff suppressed because it is too large Load Diff