All articles| All Pictures| All Softwares| All Video| Go home page| Write articles| Upload pictures
Reading number is top 10 articles
乐视回应《太子妃》被下架:修改内容后上线 - 乐视网,太子妃升职记,贾跃亭
史上最严:“作弊入刑”实行后的首次高考今开幕 - 高考,史上最严高考,2016高考
进军次大陆,摩托罗拉欲在印度开设工厂 - 摩托罗拉,印度
新加坡航空飞机中途迫降,原因竟是群羊放屁 - 飞机,迫降
原联想副总裁刘军转行卖酒:走“互联网+”模式 - 刘军,肆拾玖坊,联想
“灵魂出窍”:复旦大学实现脑电波和手势控制无人机 - 无人机,脑电波
Xinhua News Agency, four questions about the Israeli-Palestinian project: technical innovation or a money-spinning? ,
CEO Yang Xuejian sent an open letter to: life than drifting along,
真实的“计算机之父”图灵:并非万事成谜 - 图灵,计算机
Jingdong Mall 20,161 ’s quarterly revenue jumped 47.3%,
Reading number is top 10 pictures
美女浴室写真3
2012 national geographic daily picture6
NeedWallpaper13
看如何给单纯的少女洗脑
The most popular girls welcome eggplant
Hunan road lawenforcement vehicle pursue overload car caused the car turn and man is died
Sanya, hainan Haitian party feast promiscuity
Summer is most suitable for young people to travel in China10
红楼梦金陵十二钗(2)
The dog buy the ham oneself
Download software ranking
I'm come from Beijing1
Be there or be square
艳兽都市
美女写真2
电车之狼R
Unix video tutorial8
星际争霸1.08硬盘免安装版
VC++6.0培训教程
Unix video tutorial20
双旗镇刀客A
published in(发表于) 2016/8/24 11:38:50 Edit(编辑)
Micro letter reportedly arbitrary code execution vulnerability self-test programme
Micro letter reportedly arbitrary code execution vulnerability self-test programme(微信被曝任意代码执行漏洞,附自检方案,)

English

中文

Micro letter reportedly arbitrary code execution vulnerability self-test programme-micro, holes, 360-IT information

IT information news on August 24, @360 phone guardian tweeting yesterday said the 360 Mobile Guardian exclusive Alpha team found that remote arbitrary code execution vulnerabilities: badkernel.

360 said, through this vulnerability an attacker could gain complete control over the app, micro-privacy-threatening, chats, and even micro-purse, hundreds of millions of micro-credit affected! At present, the alpha team has reported this vulnerability to Tencent's emergency response center and provides repair recommendations. Micro-letter from the illustrations that seem to do these vulnerabilities have been identified and repaired.

According to o, method team revealed, badkernel vulnerability is located in micro-letter using of X5 kernel in the, X5 kernel is after Tencent custom had of chrome browser kernel, so using has X5 kernel of application are may are by this vulnerability of effect, from X5 of officer online (http://X5.Tencent.com) found, micro-letter, and phone QQ, and QQ, and Beijing East, and 58 with city, and Sohu video, and news information, application are using has X5 kernel.

Alpha team has put together emergency response center and the vulnerability to Tencent provides repair recommendations, Tencent has internal fixes this vulnerability and start to push updates to users. Users can chat on any dialog box, enter "//gettbs" can determine whether to have received the update for this vulnerability. If tbsCoreVersion is greater than 036555 the vulnerability has been fixed, users don't need to worry about, otherwise the app that vulnerability.


微信被曝任意代码执行漏洞,附自检方案 - 微信,漏洞,360 - IT资讯

IT资讯讯 8月24日消息,昨天@360手机卫士发微博称,360手机卫士阿尔法团队独家发现微信远程任意代码执行漏洞:badkernel。

360称,通过此漏洞攻击者可获取微信的完全控制权,危及微信隐私、聊天记录甚至微信钱包,上亿微信用户受影响!目前,阿尔法团队已将此漏洞报告给腾讯应急响应中心并提供修复建议。从配图可得知似乎微信方便确实已经确认了这些漏洞,并在修复中。

据阿尔法团队透露,badkernel漏洞位于微信使用的x5内核中,x5内核是经过腾讯定制过的chrome浏览器内核,所以使用了x5内核的应用都可能都受到此漏洞的影响,从x5的官网上(http://x5.tencent.com)发现,微信手机QQ、QQ空间、京东、58同城、搜狐视频、新闻资讯等应用都使用了x5内核。

阿尔法团队已经将此漏洞提交给腾讯应急响应中心并提供了修复建议,腾讯已经内部修复此漏洞并开始向用户推送更新。用户可通过在任意聊天对话框中输入“//gettbs”可判定是否已经收到此漏洞的更新。如果tbsCoreVersion大于036555则说明该漏洞已经修复,用户无需担心,否则则说明微信受该漏洞影响。
添加到del.icio.us 添加到新浪ViVi 添加到百度搜藏 添加到POCO网摘 添加到天天网摘365Key 添加到和讯网摘 添加到天极网摘 添加到黑米书签 添加到QQ书签 添加到雅虎收藏 添加到奇客发现 diigo it 添加到饭否 添加到飞豆订阅 添加到抓虾收藏 添加到鲜果订阅 digg it 貼到funP 添加到有道阅读 Live Favorites 添加到Newsvine 打印本页 用Email发送本页 在Facebook上分享
Disclaimer Privacy Policy About us Site Map
If you have any requirements, please contact webmaster。(如果有什么要求,请联系站长)
Copyright ©2011-
uuhomepage.com, Inc. All rights reserved.