BlackHat2022:4G/5G新型前门攻击解读
一. 概述2022年的Black Hat大会上,来自柏林工业大学的Dr. Altaf Shaik和Shinjo Park带来了议题《Attacks from a New Front Door in 4G & 5G ...
The Last Breath of Our Netgear RAX30 Bugs – A Tragic Tale before Pwn2Own Toronto 2022
Background Some time ago, we were playing with some Netgear routers and we learned so much from this target. However, Netgear recently patched se...
CVE-2022-25765-pdfkit-Exploit-Reverse-Shell
CVE-2022-25765-pdfkit-Exploit-Reverse-Shell pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injec...
APPLE SAFARI JAVASCRIPTCORE INSPECTOR TYPE CONFUSION
Summary A Type confusion vulnerability exists in the Apple Safari JSC Inspector. This issue causes Memory Corruption due to Type confusion. A vict...
GHSL-2022-068: Remote Code Execution (RCE) in PDFMake – CVE-2022-46161
Coordinated Disclosure Timeline 2022-08-23: Report sent to liborm85 at gmail.com 2022-10-10: Issue opened asking for a security contact 2022...
DEV-0139 launches targeted attacks against the cryptocurrency industry
Over the past several years, the cryptocurrency market has considerably expanded, gaining the interest of investors and threat actors. Cryptocurren...
COM安全 新型土豆提权 第一部分
一、概述自从Window10 1803/Server2016及以上打了微软的补丁之后,基于OXID 反射NTLM提权已经失效了,代表作如JuicyPotato、SweetPotato,本文将从COM开发与...
论文精读系列:针对RSA小私钥与小素数差的攻击(三)
是这篇论文的最后一部分内容了,之所以 3.2 一小节和 第 4 节放在一起,是因为这两部分的内容在论文中只是理论层面地带过了一下,另外笔者也是能力有限,所...
每日安全动态推送(12-8)
• Vulnerable GitHub Actions Workflows Part 2: Actions That Open the Door to CI/CD Pipeline Attacks:https://www.legitsecurity.com/blog/github-a...
传奇私服暗藏病毒劫持用户流量
近日,火绒安全工程师拦截到一款病毒正通过某传奇私服登录器进行传播。该病毒可通过C&C服务器下发任意恶意模块,还会将病毒服务器设置为代理服务器,通过...