Search
Items tagged with: Vulnerability
Flipping Pages: An analysis of a new #Linux #vulnerability in #nf_tables and hardened exploitation techniques
> A tale about exploiting KernelCTF Mitigation, Debian, and Ubuntu instances with a double-free in nf_tables in the Linux kernel, using novel techniques like Dirty Pagedirectory. All without even having to recompile the exploit for different kernel targets once.
#Unpatchable #Vulnerability in #Apple #m1 #m2 Chip Leaks Secret Encryption Keys
Now that's a good, sound reason to avoid them. Until now I felt like the fox in "The Fox and the grapes"
Unpatchable Vulnerability in Apple Chip Leaks Secret Encryption Keys - Slashdot
A newly discovered vulnerability baked into Apple's M-series of chips allows attackers to extract secret keys from Macs when they perform widely used cryptographic operations, academic researchers have revealed in a paper published Thursday.apple.slashdot.org
Creativity for creating PSK 
Ubee DDW365 XCNDDW365 and DDW366 XCNDXW3WB devices have predictable default WPA2 PSKs that could lead to unauthorized remote access. A remote attacker (in proximity to a Wi-Fi network) can derive the default WPA2-PSK value by observing a beacon frame. A PSK is generated by using the first six characters of the SSID and the last six of the BSSID, decrementing the last digit.
#infosec #vulnerability #crypto
š https://vulnerability.circl.lu/vuln/GHSA-jj7g-c984-hr2m
Exim through 4.97 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages that appear to originate from the Exim server, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.
https://gergelykalman.com/no-CVE-batsignal-a-macos-lpe.html #infosec #cybersecurity #security #apple #macos #vulnerability
batsignal (no CVE) - a macOS LPE
UPDATE: A couple hours after publication the Apple Security Changelogs were updated across the board, and they added me to CVE-2022-26704. I knew this was in the works, but it's still good to see.Gergely's hack blog
š https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088
#rapidreset #http2 #infosec #ddos #vulnerability #CVE-2023-44487
HTTP/2 Rapid Reset DDoS Attack
HTTP/2 Rapid Reset DDoS Attack. GitHub Gist: instantly share code, notes, and snippets.Gist
#mastodon #infosec #vulnerability
š https://github.com/mastodon/mastodon/releases/tag/v4.1.8
š https://cvepremium.circl.lu/cve/CVE-2023-42451
š https://cvepremium.circl.lu/cve/CVE-2023-42452
Release v4.1.8 Ā· mastodon/mastodon
ā ļø This release is an important security release fixing major security issues (CVE-2023-42451, CVE-2023-42452). Corresponding security releases are available for the 4.0.x branch and the 3.5.x bran...GitHub
Inaudible ultrasound attack can stealthily control your phone, smart speaker
Content warning: https://gadgeteer.co.za/wp-content/uploads/2023/03/NUIT-2-400x221.jpg The team of researchers consists of professor Guenevere Chen of the University of Texas in San Antonio (UTSA), her doctoral student Qi Xia, and professor Shouhuai Xu of the University o
