腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Attack ] 如何对 VMware NSX 进行攻击 : https://insinuator.net/wp-content/uploads/2018/11/H2HC_HarrieLuft_AttackingVMwareNSX-1.pdf
-
[ Browser ] Edge iOS 版浏览器地址栏欺骗漏洞: http://c0d3g33k.blogspot.com/2018/11/edge-ios-address-bar-spoof.html
-
-
[ Hardware ] 超线程架构的侧信道漏洞(CVE-2018-5407)披露,作者实现了通过测信道漏洞窃取一个OpenSSL(<= 1.1.0h)P-384私钥,但是恶意进程必须与受害者进程在同一物理核心上运行: https://seclists.org/oss-sec/2018/q4/123
-
[ MalwareAnalysis ] Trickbot 银行木马新增了密码窃取模块: https://blog.trendmicro.com/trendlabs-security-intelligence/trickbot-shows-off-new-trick-password-grabber-module/
-
[ Others ] 可被浏览器识别的域名 Unicode 特殊字符: https://shkspr.mobi/blog/2018/11/domain-hacks-with-unusual-unicode-characters/
-
[ Others ] OpenBSD VMM Hypervisor Part3 - 创建 qcow2 磁盘映像: http://www.h-i-r.net/2018/11/openbsd-vmm-hypervisor-part-3-qcow2-and.html
-
[ Pentest ] 在受限 VDI 环境中进行渗透测试: https://www.tarlogic.com/en/blog/pentests-in-restricted-vdi-environments/
-
[ Popular Software ] LiquidVPN for MacOS 多处提权漏洞披露: https://seclists.org/fulldisclosure/2018/Nov/1
-
[ Vulnerability ] Vanilla Forums getimagesize phar:// 反序列化远程代码执行漏洞(CVE-2018-18903): https://srcincite.io/blog/2018/10/02/old-school-pwning-with-new-school-tricks-vanilla-forums-remote-code-execution.html
-
[ Vulnerability ] Apache mod_jk 访问控制 bypass 漏洞披露(CVE-2018-11759): https://www.immunit.ch/blog/2018/11/01/cve-2018-11759-apache-mod_jk-access-bypass/
-
[ Vulnerability ] 德州仪器芯片CC2640和CC2650上的BLE栈中存在远程代码执行与拒绝服务漏洞,影响思科多款产品(CVE-2018-16986): https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181101-ap
-
[ Vulnerability ] Samuel Groß 在 Pwn2Own 中使用的沙箱绕过漏洞(CVE-2018-4233)的详细分析: https://saelo.github.io/presentations/bits_of_launchd.pdf
-
[ Vulnerability ] KMDF 驱动的逆向和 Bug 狩猎,来自 44CON 大会 : https://ioactive.com/wp-content/uploads/2018/09/Reverse_Engineering_and_Bug_Hunting_On_KMDF_Drivers.pdf
-
[ Vulnerability ] U-Boot 的引导验证 bypass: https://github.com/inversepath/usbarmory/blob/master/software/secure_boot/Security_Advisory-Ref_IPVR2018-0001.txt
