漏洞 Vulnerability CVE-2012-6071：nuSOAP 0.7.3-5之前版本证书安全问题 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6071 CVE-2019-16758：Lexmark服务监控2.27.4.0.39 目录穿越 https://seclists.org/fulldisclosure/2019/Nov/17 安全工具 Security Tools 基于shodan的IoT设备默认密码扫描器 https://www.e13olf.me/2019/11/i0t-pr0be-iot-device-search-default.html 安全事件 Security Incident 黑客获取220万在线游戏账号、密码 https://threatpost.com/hackers-dump-2-2m-gaming-cryptocurrency-passwords-online/150451/ Windows UAC缺陷导致提权漏洞 https://threatpost.com/windows-uac-flaw-privilege-escalation/150463/ 安全资讯 Security Information D-Link在无法修复列表中添加更多路由器 https://threatpost.com/d-link-wont-fix-router-bugs/150438/ AWS增强了SSRF攻击的防御 https://portswigger.net/daily-swig/aws-bolsters-security-to-defend-against-ssrf-attacks 安全研究 Security Research 门罗币钱包之“狸猫换太子” https://paper.seebug.org/1080/ 浅析常见Debug调试器的安全隐患 https://security.tencent.com/index.php/blog/msg/137