Understanding CVE-2019-9053 https://tpetersonkth.github.io/cve/2021/10/02/Analysis-of-CVE-2019-9053.html
Home
CVE-2019-9053
Background This weekend I was doing some HTB machines to prepare for the OSWE certification. One of the recommended machines was Writeup. This machine is vulnerable to CVE-2019-9053 which has a corresponding exploit on Exploit-DB.
CVE-2021-26420: Remote Code Execution in SharePoint via Workflow Compilation https://www.zerodayinitiative.com/blog/2021/10/5/cve-2021-26420-remote-code-execution-in-sharepoint-via-workflow-compilation
Zero Day Initiative
Zero Day Initiative — CVE-2021-26420: Remote Code Execution in SharePoint via Workflow Compilation
In June of 2021, Microsoft released a patch to correct CVE-20 21-264 20 – a remote code execution bug in the supported versions of Microsoft SharePoint Server. This bug was reported to the ZDI program by an anonymous researcher and is also known as ZDI…
How to defeat the Russian Dukes: A step-by-step analysis of MiniDuke used by APT29/Cozy Bear https://cybergeeks.tech/how-to-defeat-the-russian-dukes-a-step-by-step-analysis-of-miniduke-used-by-apt29-cozy-bear/
Dragonfly: your next generation malware sandbox https://www.certego.net/en/news/dragonfly/
GitOops! Attacking and defending CI/CD pipelines https://tech.ovoenergy.com/gitoops-attacking-and-defending-ci-cd-pipelines/
Analysis of a Heap Buffer-Overflow Vulnerability in Adobe Acrobat Reader DC https://blog.exodusintel.com/2021/10/04/analysis-of-a-heap-buffer-overflow-vulnerability-in-adobe-acrobat-reader-dc-2/
Exodus Intelligence
Analysis of a Heap Buffer-Overflow Vulnerability in Adobe Acrobat Reader DC - Exodus Intelligence
By Sergi Martinez In late June, we published a blog post containing analysis of exploitation of a heap-buffer overflow vulnerability in Adobe Reader, a vulnerability that we thought corresponded to CVE-2021-21017. The starting point for the research was a…
Assessing the security and privacy of Vaccine Passports
https://research.nccgroup.com/2021/10/04/assessing-the-security-and-privacy-of-vaccine-passports/
https://research.nccgroup.com/2021/10/04/assessing-the-security-and-privacy-of-vaccine-passports/
NCC Group Research
Assessing the security and privacy of Vaccine Passports
This post attempts to explore the security and privacy concerns related with vaccine credential systems, by way of threat modelling and exploring the various risks and attacks conceivable against such systems.... Furthermore, we'll look at these concerns…
CVE-2021-26420: Remote Code Execution in SharePoint via Workflow Compilation https://www.zerodayinitiative.com/blog/2021/10/5/cve-2021-26420-remote-code-execution-in-sharepoint-via-workflow-compilation
Zero Day Initiative
Zero Day Initiative — CVE-2021-26420: Remote Code Execution in SharePoint via Workflow Compilation
In June of 2021, Microsoft released a patch to correct CVE-20 21-264 20 – a remote code execution bug in the supported versions of Microsoft SharePoint Server. This bug was reported to the ZDI program by an anonymous researcher and is also known as ZDI…
Interesting cheatsheet » Vulnerability Remediation Kanban https://theartofservice.com/vulnerability-remediation-kanban
Theartofservice
Vulnerability Remediation Kanban- The Art of Service, Standard Requirements Self Assessments
Ready to use prioritized Vulnerability Remediation requirements, to: Make sure the Information Security team is responsible for incident response,
Ransomware in the CIS https://securelist.com/cis-ransomware/104452/
Securelist
Roundup of ransomware in the CIS
Statistics on ransomware attacks in the CIS and technical descriptions of Trojans, including BigBobRoss/TheDMR, Crysis/Dharma, Phobos/Eking, Cryakl/CryLock, CryptConsole, Fonix/XINOF, Limbozar/VoidCrypt, Thanos/Hakbit and XMRLocker.
Actors Target Huawei Cloud Using Upgraded Linux Malware https://www.trendmicro.com/en_us/research/21/j/actors-target-huawei-cloud-using-upgraded-linux-malware-.html
Trend Micro
Actors Target Huawei Cloud Using Upgraded Linux Malware
UEFI threats moving to the ESP: Introducing ESPecter bootkit https://www.welivesecurity.com/2021/10/05/uefi-threats-moving-esp-introducing-especter-bootkit/
WeLiveSecurity
UEFI threats moving to the ESP: Introducing ESPecter bootkit
ESET researchers discover and analyze ESPecter, a previously undocumented UEFI bootkit with roots that go back all the way to at least 2012.
Check Point Research Prevents Theft of Crypto Wallets on OpenSea, the World’s Largest NFT Marketplace https://research.checkpoint.com/2021/check-point-research-prevents-theft-of-crypto-wallets-on-opensea-the-worlds-largest-nft-marketplace/
Check Point Research
Check Point Research Prevents Theft of Crypto Wallets on OpenSea, the World’s Largest NFT Marketplace - Check Point Research
Research by : Dikla Barda, Roman Zaikin & Oded Vanunu During the past few weeks, Check Point researchers spotted various cases where people tweeted reports claiming they lost their crypto wallet balance, while receiving a free gift on the OpenSea market…
The discovery of Gatekeeper bypass CVE-2021-1810 https://labs.f-secure.com/blog/the-discovery-of-cve-2021-1810/
0-Day Hunting (Chaining Bugs/Methodology) https://blog.riotsecurityteam.com/0day-chains
GOT and PLT for pwning https://systemoverlord.com/2017/03/19/got-and-plt-for-pwning.html
System Overlord
GOT and PLT for pwning.
So, during the recent 0CTF, one of my teammates was asking me about RELRO and the GOT and the PLT and all of the ELF sections involved. I realized that though I knew the general concepts, I didn’t know as much as I should, so I did some research to...
Double-check Inputs to Avoid SSRF Vulnerability https://blog.securelayer7.net/double-check-inputs-to-avoid-ssrf-vulnerability/
Chrome in-the-wild bug analysis: CVE-2021-37975 https://securitylab.github.com/research/in_the_wild_chrome_cve_2021_37975/
How a simple Linux kernel memory corruption bug can lead to complete system compromise https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html
Blogspot
How a simple Linux kernel memory corruption bug can lead to complete system compromise
An analysis of current and potential kernel security mitigations Posted by Jann Horn, Project Zero Introduction This blog post de...
Applying Fuzzing Techniques Against PDFTron (part 1 & part 2) https://blog.haboob.sa/blog/applying-fuzzing-techniques-against-pdftron-part-1 https://blog.haboob.sa/blog/applying-fuzzing-techniques-against-pdftron-part-2
Haboob
Applying Fuzzing Techniques Against PDFTron: Part 1 — Haboob
Introduction: PDFTron SDK brings a wide variety of PDF parsing functionalities. It varies from reading and viewing PDF files to converting PDF files to different file formats. The provided SDK is widely used and supports multiple platforms, it also exposes…
Building a POC for CVE-2021-40438 https://firzen.de/building-a-poc-for-cve-2021-40438