
腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] Android 10 月安全更新发布: https://source.android.com/security/bulletin/2018-10-01.html
-
[ Browser ] Chrome blink::ScriptFunction::~ScriptFunction 中的堆溢出漏洞(CVE-2018-16066): https://bugs.chromium.org/p/chromium/issues/detail?id=847570
-
[ Linux ] linux-vulnerabilities-10-years - 一篇对 Linux 十年来的内核漏洞,缓解措施以及开放问题的研究论文 : https://github.com/maxking/linux-vulnerabilities-10-years
-
[ macOS ] Apple XNU (macOS High Sierra 10.13.5)最新的可用源代码 : https://twitter.com/doadam/status/1047140951313936385
-
[ MalwareAnalysis ] 针对欧洲国家的 DanaBot 银行木马威胁活动介绍: https://www.trendmicro.com/vinfo/us/security/news/cybercrime-and-digital-threats/danabot-banking-trojan-found-targeting-european-countries
-
[ Others ] 对 YARA 规则的详细介绍: http://blog.inquest.net/blog/2018/09/30/yara-performance/
-
-
[ Popular Software ] Adobe Acrobat Reader DC Collab reviewServer 远程代码执行漏洞披露(CVE-2018-12852): https://blog.talosintelligence.com/2018/10/vuln-spot-adobe-reader-rce.html
-
[ Popular Software ] 发现 Adobe Acrobat Pro DC 调用的 Onix32.dll 中的漏洞: https://www.zerodayinitiative.com/blog/2018/9/28/onix-finding-pokmon-in-your-acrobat-revealing-a-new-attack-surface
-
[ Tools ] mmdetect - 用于检查 Intel ME Manufacturing Mode 状态的 Python 2.7 脚本 : https://github.com/ptresearch/mmdetect
-
[ Tools ] mac-ages - MAC 地址年龄跟踪项目,通过 MAC 地址寻找硬件的近似发布日期: https://github.com/hdm/mac-ages
-
[ Vulnerability ] Positive Tech 的研究员发现部分 Apple 的电脑上使用 Intel 芯片组的制造模式没有关闭,攻击者可以无物理接触的情况下,向刷入存在漏洞ME固件,并利用该漏洞实现Ring -3级别的任意代码执行(CVE-2018-4251): http://blog.ptsecurity.com/2018/10/intel-me-manufacturing-mode-macbook.html
-
[ Web Security ] Web 应用程序安全性介绍: https://www.slideshare.net/nragupathy/introduction-to-web-application-security-blackhoodie-us-2018
-
[ Windows ] Windows 10 v1809 和 Windows Server 2019 的安全基准草稿: https://blogs.technet.microsoft.com/secguide/2018/10/01/security-baseline-draft-for-windows-10-v1809-and-windows-server-2019/