腾讯玄武实验室安全动态推送
Tencent Xuanwu Lab Security Daily News
-
[ Android ] Exploit for CVE-2016-5342 https://github.com/freener/exploits/tree/master/CVE-2016-5342. After I finished the exploit, I found it was reported by @ chiachih_wu and patched. :(
" Android CVE-2016-5342 Exploit: https://t.co/njEEneD4pZ "
-
[ Android ] Derestricted a fun vuln yesterday; bypassing the TrustZone-enforced kernel module verification. https://bugs.chromium.org/p/project-zero/issues/detail?id=960
"Samsung: TIMA 任意内核模块验证绕过,来自 Project Zero: https://t.co/6wzCrGajH4"
-
[ Browser ] Security vulnerabilities fixed in Firefox 51 https://www.mozilla.org/en-US/security/advisories/mfsa2017-01/
" Firefox 浏览器 51 版本发布,修复的漏洞列表: https://t.co/JJXwbKweB3 "
-
[ Browser ] CVE-2016-5218 - Google Chrome Address Bar Spoof Writeup - http://leucosite.com/Chrome-Address-Bar-Spoof/
" Google Chrome 地址栏欺骗漏洞(CVE-2016-5218)分析: https://t.co/AtrSjO5gew"
-
[ Browser ] Browser Bug Hunting and Mobile (Fuzzing) Syscan360 http://slides.com/revskills/fzbrowsers#/1
"浏览器漏洞挖掘与手机 Fuzzing,来自 Syscan 360 会议: https://t.co/YHVbrMwe36"
-
[ Hardware ] Hacking the DJI Phantom 3 http://dronesec.xyz/2017/01/25/hacking-the-dji-phantom-3/
"Hacking 大疆 Phantom 3 无人机: https://t.co/W0bCro2Jyw"
-
[ iOS ] security content of iOS 10.2.1 kernel, webkit https://support.apple.com/en-us/HT207482
"iOS 10.2.1 版本的安全公告: https://t.co/2EBPhGXyXU"
-
[ Linux ] Linux Setgid Directory Privilege Escalation http://www.halfdog.net/Security/2015/SetgidDirectoryPrivilegeEscalation/
"Linux Setgid 目录提权(2015): https://t.co/RDTdXJyF2b"
-
[ MalwareAnalysis ] AMIRA : Automated Malware Incident Response and Analysis : https://engineeringblog.yelp.com/2016/08/amira-automated-malware-incident-response-and-analysis.html https://t.co/0ndshwHtw9
" AMIRA - 自动化的恶意软件事件响应和分析系统︰ https://t.co/wncsSYORxp https://t.co/0ndshwHtw9"
