赛门铁克安全响应术语表[2]

• Propagates by multiple methods: Scans for vulnerabilities to compromise a system such as embedding code in html files on a server, infecting visitors to a compromised Web site, or sending unauthorized email from compromised servers with a worm attachment.
• Attacks from multiple points: Injects malicious code into .exe files on a system, raises the privilege level of the guest account, creates world read and writable network shares, makes numerous registry changes, and adds script code into html files.
• Spreads without human intervention: Continuously scans the Internet for vulnerable servers to attack.
• Exploits vulnerabilities: Takes advantage of known vulnerabilities such as buffer overflows, http input validation vulnerabilities, and known default passwords to gain unauthorized administrative access.
Effective protection from blended threats requires a comprehensive security solution that contains multiple layers of defense and response mechanisms.
Bug
错误
一个在软件中的设计错误，可以导致多余的负面影响。例如：各种各样的WEB浏览器的安全问题，软件2000年（Y2K）问题。
A programming error in a software program which can have unwanted side effects. Examples: Various web browser security problems, Y2K software problems.
CVE References
CVE参考
一个针对漏洞和其他安全隐患信息的标准的列表的名称——CVE打算使所有的公共已知的漏洞和安全隐患符合标准。（来源：CVE网站）
A list of standardized names for vulnerabilities and other information security exposures - CVE aims to standardize the names for all publicly known vulnerabilities and security exposures. (Source: CVE Web site)
Exploit
开发
利用某些可以被用来破坏安全或者通过其他方面越过网络来攻击主机的软件漏洞的而实现的一个程序或者一种技术。
A program or technique that takes advantage of a vulnerability in software that can be used for breaking security or otherwise attacking a host over the network.
Firewall Rules
防火墙规则
通过规则来阻碍或允许你的电脑和Internet之间数据传输的一种安全系统。
A security system that uses rules to block or allow connections and data transmissions between your computer and the Internet.
Intrusion Detection
入侵察觉
闯入或者尝试闯入的察觉被记录在reviewing logs上或其他在网上可用的信息中。
The detection of break-ins or break-in attempts by reviewing logs or other information available on a network.
Macro virus
宏病毒
被写在内建的应用程序的宏语言中的一段程序或片断。有些宏复制，有些则感染文档。
A program or code segment written in the internal macro language of an application. Some macros replicate, while others infect documents.
Systems Affected
系统受影响
容易受到攻击的操作系统或应用程序。
Refers to operating systems or applications that are vulnerable to a threat.
Systems Not Affected
系统不受影响
不容易受到攻击的操作系统或应用程序。当更多的关于一个特定的恶意程序的信息可用时，系统列表是可能变化的，
Refers to operating systems or applications that are not vulnerable to a threat. The list of systems may change as more information about a given threat becomes available.
Time stamp of attachment
附件的印时戳
这里指出了附件的日期和时间。
This field indicates the date and time of the file attachment.
Category: Hoax
种类：谣言
通常为一个被用连锁信的方式来描述一些破坏性很高的不太可能的病毒的类型的电子邮件，你通常可以发现认出这种Email，因为没有文件附件，没有涉及可以证实这消息可靠的第三方和“发作状况”概要。
Usually an email that gets mailed in chain letter fashion describing some devastating highly unlikely type of virus, you can usually spot a hoax because there's no file attachment, no reference to a third party who can validate the claim and the general 'tone' of the message.
Category: Joke
种类：玩笑程序