腾讯玄武实验室安全动态推送(Tencent Xuanwu Lab Security Daily News)

腾讯玄武实验室安全动态推送

Tencent Xuanwu Lab Security Daily News

2017/12/25

[ Browser ] Chrome 62 版本修复的两个漏洞的详情： Chrome UAF in CFFL_InteractiveFormFiller::OnBeforeKeyStroke(CVE-2017-5127)，： https://bugs.chromium.org/p/chromium/issues/detail?id=765384 Use-after-free in CPWL_Edit::OnKillFocus（CVE-2017-5126） https://bugs.chromium.org/p/chromium/issues/detail?id=760455
[ Others ] 利用 Docker 构建命令控制服务器： https://blog.obscuritylabs.com/docker-command-controll-c2/
[ ReverseEngineering ] Reverse Engineering With Radare2 — Part 2： https://medium.com/@jacob16682/reverse-engineering-with-radare2-part-2-83b71df7ffe4
[ SecurityProduct ] 趋势科技 Smart Protection Server 多个漏洞披露（ CVE-2017-11398, CVE-2017-14094, CVE-2017-14095, CVE-2017-14096, CVE-2017-14097）： https://www.coresecurity.com/advisories/trend-micro-smart-protection-server-multiple-vulnerabilities
[ Tools ] parameth - GET / POST 参数暴力破解工具： https://github.com/maK-/parameth
[ Tools ] fastboot3DS - Nintendo 3DS bootloader： https://github.com/derrekr/fastboot3DS
[ Vulnerability ] VITEK RCE 和信息泄漏漏洞披露： http://seclists.org/fulldisclosure/2017/Dec/85
[ Vulnerability ] Yahoo Spring Engine SSTI 远程代码执行漏洞挖掘: https://hawkinsecurity.com/2017/12/13/rce-via-spring-engine-ssti/

[ Browser ] 日本研究员 brn 青野健利结合 V8 代码中的重要数据结构对 V8 引擎的介绍，前段时间推送过他的分享的一份《Source to Binary：Journey of v8 JavaScript engine》： http://abcdef.gets.b6n.ch/entry/2017/12/25/120000
[ Hardware ] 在人工智能背景下解读GPU： http://001001.org/gedu/AI_via_GPU_Raymond.pdf
[ Linux ] Adapting the POC for CVE-2017-1000112 to Other Kernels： http://ricklarabee.blogspot.com/2017/12/adapting-poc-for-cve-2017-1000112-to.html
[ Linux ] Linux 堆利用系列之Double free attacks： https://sensepost.com/blog/2017/linux-heap-exploitation-intro-series-riding-free-on-the-heap-double-free-attacks/
[ Malware ] File-Locker 勒索软件将目标瞄准韩国： https://www.bleepingcomputer.com/news/security/file-locker-ransomware-targets-korean-victims-and-asks-for-50k-won/
[ MalwareAnalysis ] DowginCw病毒家族解析： http://jaq.alibaba.com/community/art/show?spm=a313e.7916642.220000NaN1.1.1e152520uFOg0S&articleid=1283
[ MalwareAnalysis ] “荒野行动盒子”Root锁屏勒索样本分析: https://mp.weixin.qq.com/s/HPfHMdxmZJoYdwzCeVLDFw
[ Others ] 2017 年你所在的行业和领域发生了哪些大事？: https://www.zhihu.com/question/263944203/answer/280558384
[ Popular Software ] WebLogic WLS-WebServices组件反序列化漏洞分析： https://zhuanlan.zhihu.com/p/32267755 https://www.anquanke.com/post/id/92003
[ Popular Software ] 有关CVE-2017-17562的一些零碎点： https://kevien.github.io/2017/12/24/CVE-2017-17562%E7%9A%84%E4%B8%80%E4%BA%9B%E9%9B%B6%E7%A2%8E%E7%82%B9/
[ Tools ] nexmon_debugger - BCM4339 Wi-Fi 芯片调试器，拥有硬件断点和内存观察点功能：https://github.com/seemoo-lab/nexmon_debugger
[ Tools ] Control Flow Visualizer (CFViz): rr / gdb 的控制流可视化插件介绍： https://botondballo.wordpress.com/2017/12/22/control-flow-visualizer-cfviz-an-rr-gdb-plugin/
[ Vulnerability ] 【PHP代码审计】T***Shop漏洞集合: https://mp.weixin.qq.com/s/TNuM8q8JZsFR_46j5LemMw
[ Web Security ] Ode To Blind XSS: https://lewisardern.github.io/2017/12/10/blind-xss/
[ WirelessSecurity ] Guide to LTE Security,来自 NIST : http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-187.pdf

2017/12/25