每日安全动态推送(08-15)

admin 腾讯玄武实验室 2019-08-15


Tencent Security Xuanwu Lab Daily News


• [macOS] Bypassing MacOs Detections With Swift: 
https://www.slideshare.net/secret/lUVcpYouYP3eWL

   ・ 利用 Swift 调用 Native API 以绕过 macOS EDR 的检测 – Jett


• [iOS] [PDF] http://i.blackhat.com/USA-19/Thursday/us-19-Huang-Towards-Discovering-Remote-Code-Execution-Vulnerabilities-In-Apple-FaceTime.pdf: 
http://i.blackhat.com/USA-19/Thursday/us-19-Huang-Towards-Discovering-Remote-Code-Execution-Vulnerabilities-In-Apple-FaceTime.pdf

   ・ 盘古出品,主要讲了Apple FaceTime的架构,相关攻击面以及一些漏洞 – R3dF09


• Fingerprints of 1M Exposed in Public Biometrics Database: 
https://threatpost.com/fingerprints-of-1m-exposed-in-public-biometrics-database/147345/

   ・ 生物科技公司 Suprema 通过公开数据库泄漏超 100 万人的面部识别和指纹生物信息 – Jett


• [PDF] https://i.blackhat.com/USA-19/Wednesday/us-19-Shupeng-All-The-4G-Modules-Could-Be-Hacked.pdf: 
https://i.blackhat.com/USA-19/Wednesday/us-19-Shupeng-All-The-4G-Modules-Could-Be-Hacked.pdf

   ・ 百度安全实验室对移动网络 4G 安全攻击面的研究 – Jett


• CVE_2019_9516.pl: 
https://gist.github.com/tirkarthi/fd6fad6f6fb683957358bf9095645ea6

   ・ HTTP/2 Stream 空的 HTTP Header 可以导致 Nginx 拒绝服务(CVE-2019-9516) – Jett


• [Virtualization] [PDF] https://www.usenix.org/system/files/woot19-paper_zhao.pdf: 
https://www.usenix.org/system/files/woot19-paper_zhao.pdf

   ・ VMware ESXi Guest->Host 逃逸攻击面的分析 Paper – Jett


• [iOS] [PDF] http://i.blackhat.com/USA-19/Thursday/us-19-Wang-Attacking-IPhone-XS-Max.pdf: 
http://i.blackhat.com/USA-19/Thursday/us-19-Wang-Attacking-IPhone-XS-Max.pdf

   ・ 这个议题介绍了UNIX socket bind操作因临时unlock引发的竞争条件,最终导致了一个UAF漏洞,作者介绍了该漏洞在A12之后和之后的漏洞利用方法。 – freener0


• [iOS] How to Escape SandBox And Get Root on iOS 12.x once you've got tfp0: 
https://jailbreak.fce365.info/Thread-How-to-Escape-SandBox-And-Get-Root-on-iOS-12-x-once-you-ve-got-tfp0

   ・ 在iOS12.x系统上当有tfp0漏洞时如何逃逸沙箱并且获得root权限 – R3dF09


• [PDF] https://i.blackhat.com/USA-19/Thursday/us-19-Peterlin-Breaking-Samsungs-ARM-TrustZone.pdf: 
https://i.blackhat.com/USA-19/Thursday/us-19-Peterlin-Breaking-Samsungs-ARM-TrustZone.pdf

   ・ Breaking Samsung ARM TrustZone – Jett


• 4 New BlueKeep-like 'Wormable' Windows Remote Desktop Flaws Discovered: 
https://thehackernews.com/2019/08/windows-rdp-wormable-flaws.html

   ・ Windows 昨天修复的漏洞中包含 4 个类似 BlueKeep 的 RDP 服务 RCE 漏洞 – Jett


• Analysis of CVE-2018-1000657: OOB write in Rust's VecDeque::reserve(): 
https://gts3.org/2019/cve-2018-1000657.html

   ・ Rust 编程语言标准库的 VecDeque::reserve() OOB 内存越界写漏洞(CVE-2018-1000657)的分析 –Jett


• Use-After-Free (UAF) Vulnerability CVE-2019-1199 in Microsoft Outlook: 
https://buff.ly/2Z4wWOm

   ・ Microsoft Outlook RTF 处理 UAF 漏洞(CVE-2019-1199)的分析 – Jett


* 查看或搜索历史推送内容请访问: 
https://sec.today

* 新浪微博账号: 腾讯玄武实验室 
https://weibo.com/xuanwulab

    已同步到看一看

    发送中

    本站仅按申请收录文章,版权归原作者所有
    如若侵权,请联系本站删除
    觉得不错,分享给更多人看到
    腾讯玄武实验室 热门文章:

    BadTunnel:跨网段劫持广播协议    阅读/点赞 : 3386/54

    安全动态推送春节合辑(上)    阅读/点赞 : 449/5

    每日安全动态推送(02-21)    阅读/点赞 : 392/4

    每日安全动态推送(03-13)    阅读/点赞 : 390/6

    每日安全动态推送(09-19)    阅读/点赞 : 380/4

    每日安全动态推送(10-11)    阅读/点赞 : 378/4

    每日安全动态推送(06-20)    阅读/点赞 : 368/6

    每日安全动态推送(10-19)    阅读/点赞 : 344/4

    每日安全动态推送(11-25)    阅读/点赞 : 331/4

    每日安全动态推送(07-18)    阅读/点赞 : 320/4

    腾讯玄武实验室 微信二维码

    腾讯玄武实验室 微信二维码