信息安全隐患命名标准
http://cve.mitre.org/about/terminology.html
Common Vulnerabilities and Exposures
The Standard for Information Security Vulnerability Names
Below are the CVE Initiative’s definitions of the terms " Vulnerability " and " Exposure ":
CVE 对 Vulnerability 和 Exposure 的定义是:
Vulnerability
计算机安全隐患(漏洞)An information security "vulnerability" is a mistake in software that can be directly used by a hacker to gain access to a system or network.
一个信息安全 隐患:是 软件中的一个错误,能够直接被黑客利用 以 得到权力使用 (gain access to) 一个系统或者网络。
CVE considers a mistake a vulnerability if it allows an attacker to use it to violate a reasonable security policy for that system (this excludes entirely "open" security policies in which all users are trusted, or where there is no consideration of risk to the system).
如果 一个错误 能够被攻击者利用 以违背系统的合理安全策略(不包括信任所有用户,不考虑任何系统风险的完全“开放”的安全策略,), CVE就将其看作是一个漏洞。
For CVE, a vulnerability is a state in a computing system (or set of systems) that either:
对CVE 来说, 计算机系统(或系统集)中的漏洞 指的是如下状态:
- allows an attacker to execute commands as another user
- 允许攻击者像其他用户一样执行命令
- allows an attacker to access data that is contrary to the specified access restrictions for that data
- 允许攻击者 违反限制 访问数据
- allows an attacker to pose as another entity
- 允许攻击者伪装成 另一个实体
- allows an attacker to conduct a denial of service
- 允许攻击者执行 拒绝服务攻击
Examples of vulnerabilities include:
安全隐患 例子包括:
- phf (remote command execution as user "nobody")
- 以用户“nobody” 远程执行命令
- rpc.ttdbserverd (remote command execution as root)
- 以root远程执行命令
- world-writeable password file (modification of system-critical data)
- 系统关键数据修改
- default password (remote command execution or other access)
- 默认密码(远程命令执行或其他访问)
- denial of service problems that allow an attacker to cause a Blue Screen of Death
- 拒绝访问 允许攻击者制造蓝屏死机
- smurf (denial of service by flooding a network)
- smurf攻击(百度词条) 网络洪泛造成拒绝访问
Review vulnerabilities on the Common Vulnerabilities and Exposures (CVE) List.
Exposure
后门
An information security "exposure" is a system configuration issue or a mistake in software that allows access to information or capabilities that can be used by a hacker as a stepping-stone into a system or network.
信息安全 后门 指一个允许信息访问的 系统配置问题 或者软件中的一个错误, 或者是 能够被黑客利用以进入系统或者网络的手段。
CVE considers a configuration issue or a mistake an exposure if it does not directly allow compromise but could be an important component of a successful attack, and is a violation of a reasonable security policy.
CVE将一个 违背合理安全策略, 不直接允许攻击 但可能是一次成功攻击的重要组件的 配置问题或者错误 看作是后门。
An "exposure" describes a state in a computing system (or set of systems) that is not a vulnerability, but either:
后门描述的是计算机系统 不同于 漏洞的如下状态:
- allows an attacker to conduct information gathering activities
- 允许攻击者进行 信息收集 的活动
- allows an attacker to hide activities
- 允许攻击者 隐蔽活动
- includes a capability that behaves as expected, but can be easily compromised
- 包括一项 表现为正常,但是能够轻易被攻击 的能力
- is a primary point of entry that an attacker may attempt to use to gain access to the system or data
- 是一个 攻击者可能试图用于获得系统或者数据访问权限 的首要入口
- is considered a problem according to some reasonable security policy
- 根据 合理的安全策略, 看作是个问题
Examples of exposures include:
后门的例子包括:
- running services such as finger (useful for information gathering, though it works as advertised)
- 运行finger等服务(Finger服务可用于查询用户的信息,包括网上成员的真实姓名、用户名、最近登录时间和地点等,也可以用来显示当前登录在机器上的所有用户名,这对入侵者手机信息非常有用)
- inappropriate settings for Windows NT auditing policies (where "inappropriate" is enterprise-specific)
- 企业对Windows NT 审查策略的不当配置
- running services that are common attack points (e.g., HTTP, FTP, or SMTP)
- 运行 通用攻击点服务,例如 http/FTP/SMTP
- use of applications or services that can be successfully attacked by brute force methods (e.g., use of trivially broken encryption, or a small key space)
- 使用 能够被强力方法成功攻击的应用或服务,例如 弱加密 或者 短长度key
Review exposures on the Common Configuration Enumeration (CCE) List.
6529
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
