Iqela labaphandi abavela eVirginia Tech, iCyentia kunye neRAND,
Nangona kunjalo, akukho lunxulumano lufunyenweyo phakathi kokupapashwa kweeprototypes zokuxhaphaza kwindawo yoluntu kunye nokuzama ukuxhaphaza ubuthathaka. Kuzo zonke iinyani zokusetyenziswa kobuthathaka ezaziwa ngabaphandi, kuphela kwisiqingatha samatyala engxaki yayiyiprototype yokuxhaphaza epapashwe kwimithombo evulekileyo ngaphambili. Ukunqongophala kweprototype yokuxhaphaza akuyeki abahlaseli, abathi, ukuba kuyimfuneko, bazenzele ngokwabo.
Ezinye izigqibo zibandakanya imfuno yoxhatshazo ikakhulu kubuthathaka abanomgangatho ophezulu wobungozi ngokohlelo lweCVSS. Phantse isiqingatha sohlaselo lusebenzise ubuthathaka kunye nobunzima obuyi-9 ubuncinci.
Itotali yenani leeprototypes ezipapashiweyo ngeli xesha liphantsi koqwalaselo liqikelelwe kuma-9726.
ingqokelela Exploit DB, Metasploit, D2 Security's Elliot Kit, Canvas Exploitation Framework, Contagio, Reversing Labs and Secureworks CTU.
Ulwazi malunga nobuthathaka lufunyenwe kuvimba weenkcukacha
Uphononongo lwaqhutyelwa ukufumanisa ulungelelwaniso olufanelekileyo phakathi kokufaka uhlaziyo ukuchonga nabuphi na ubuthathaka kunye nokuphelisa kuphela iingxaki eziyingozi kakhulu. Kwimeko yokuqala, ukhuseleko oluphezulu luqinisekiswa, kodwa izibonelelo ezinkulu zifunekayo ukuze kugcinwe iziseko zophuhliso, ezichithwa ngokukodwa ekulungiseni iingxaki ezingabalulekanga. Kwimeko yesibini, kukho umngcipheko omkhulu wokulahlekelwa ngumngcipheko ongasetyenziselwa ukuhlaselwa. Uphononongo lubonise ukuba xa uthatha isigqibo sokufakela uhlaziyo oluphelisa ubuthathaka, akufanele uthembele ekunqongophelweni kweprototype epapashiweyo kunye nethuba lokuxhaphaza ngokuthe ngqo kuxhomekeke kwinqanaba lobunzima bomngcipheko.
umthombo: opennet.ru