每日安全动态推送(08-29)

admin 腾讯玄武实验室 2019-08-29


Tencent Security Xuanwu Lab Daily News


• BitDefender Antivirus Free 2020 - Privilege Escalation to SYSTEM: 
https://safebreach.com/Post/BitDefender-Antivirus-Free-2020-Privilege-Escalation-to-SYSTEM?fbclid=IwAR0ltQVRq2OFvFKpvZHX68Hf4e6BudScU32njk_S4WFUt3GjgppiR7zn97k

   ・ BitDefender Antivirus Free 2020 存在漏洞,可通过加载任意未签名 DLL 实现权限逃逸和持久化。– 靓仔


• [CTF] Announcing Pwn2Own Tokyo for 2019: 
http://bit.ly/2ZzWUp3

   ・ ZDI 公布 PWN2OWN TOKYO 2019 比赛的细节,本次新增了 Facebook 的两款设备 – Jett


• [Report] [PDF] https://mcafee.ly/2zsQ2j2: 
https://mcafee.ly/2zsQ2j2

   ・ McAfee 发布 2019 Q1 季度威胁报告 – Jett


• Cisco UCS Director, Cisco Integrated Management Controller Supervisor and Cisco UCS Director Express for Big Data - Multiple Vulnerabilities: 
http://dlvr.it/RC31Rv

   ・ Cisco UCS Director (UCS) 被发现认证及命令注入等多个漏洞 – Jett


• Fingerprinting WAF Rules with Timing Based Side Channel Attacks: 
https://medium.com/@0xInfection/fingerprinting-waf-rules-via-timing-based-side-channel-attacks-cd29c48fb56

   ・ 基于时间的侧信道攻击,实现准确识别请求是被WAF直接拦截or被WAF过滤后传递到服务器。 –Cytosine


• CaijiOrz/fastjson-1.2.47-RCE: 
https://github.com/CaijiOrz/fastjson-1.2.47-RCE

   ・ Fastjson <= 1.2.47 远程命令执行漏洞利用工具及方法 – Jett


• Expected Result: 
https://docs.google.com/document/d/e/2PACX-1vRx2wO2kj0axlQtv2CDSjPGlRKJOHtucvpOKGFKybh2eVVGZqvt_JJv-2Q11NHn5Y4um_F4-bgA6q5v/pub

   ・ 即时通讯软件 Telegram 被发现漏洞,该漏洞可以被利用泄漏公开群组中任意用户的手机号 – Jett


• [Browser] A Cryptocurrency Heist, Starring Your Web Browser: 
https://blog.ret2.io/2019/08/28/sia-coin-dns-rebinding/

   ・ 滥用 Web 浏览器的协议标准,攻击本地服务,窃取加密货币 – Jett


• [Windows] Analyzing and Identifying Issues with the Microsoft Patch for CVE-2018-8423: 
https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/analyzing-and-identifying-issues-with-the-microsoft-patch-for-cve-2018-8423/

   ・ McAfee 对 Windows Jet Database Engine CVE-2018-8423 漏洞补丁的分析 – Jett


• [Tools] googleprojectzero/BrokenType: 
https://github.com/googleprojectzero/BrokenType/tree/master/fontsub-dll-on-linux

   ・ j00ru 开源了一个 Linux 版本的 DLL Loader,用于加载 Windows FontSub.dll – Jett


* 查看或搜索历史推送内容请访问: 
https://sec.today

* 新浪微博账号: 腾讯玄武实验室 
https://weibo.com/xuanwulab

    已同步到看一看

    发送中

    本站仅按申请收录文章,版权归原作者所有
    如若侵权,请联系本站删除
    觉得不错,分享给更多人看到
    腾讯玄武实验室 热门文章:

    BadTunnel:跨网段劫持广播协议    阅读/点赞 : 3386/54

    安全动态推送春节合辑(上)    阅读/点赞 : 449/5

    每日安全动态推送(02-21)    阅读/点赞 : 392/4

    每日安全动态推送(03-13)    阅读/点赞 : 390/6

    每日安全动态推送(09-19)    阅读/点赞 : 380/4

    每日安全动态推送(10-11)    阅读/点赞 : 378/4

    每日安全动态推送(06-20)    阅读/点赞 : 368/6

    每日安全动态推送(10-19)    阅读/点赞 : 344/4

    每日安全动态推送(11-25)    阅读/点赞 : 331/4

    每日安全动态推送(07-18)    阅读/点赞 : 320/4

    腾讯玄武实验室 微信二维码

    腾讯玄武实验室 微信二维码