ch
Feedback
SysAdmin 24x7

SysAdmin 24x7

前往频道在 Telegram

Noticias y alertas de seguridad informática. Chat y contacto: t.me/sysadmin24x7chat

显示更多
4 386
订阅者
+124 小时
-17
+130
帖子存档
Polymorph - A Real-Time Network Packet Manipulation Framework With Support For Almost All Existing Protocols https://www.kitploit.com/2018/08/polymorph-real-time-network-packet.html

Xen: integer overflow in xen-netback xenvif_set_hash_mapping https://bugs.chromium.org/p/project-zero/issues/detail?id=1607&desc=3

Vulnerability Note VU#787952 Android and iOS apps contain multiple vulnerabilities Overview Android apps, including those pre-installed on some mobile devices, contain multiple vulnerabilities. All of these vulnerabilities were reported by Kryptowire. Vulnerabilities in pre-installed apps were presented at DEF CON 26 and a set of different vulnerabilities were previously coordinated by the Department of Homeland Security (DHS) Science and Technology Directorate (S&T) and National Cybersecurity and Communications Integration Center (NCCIC). https://www.kb.cert.org/vuls/id/787952

Múltiples vulnerabilidades en BIG-IP de F5 Fecha de publicación:17/08/2018 Importancia: 4 - Alta Recursos afectados:  BIG-IP APM-clients versiones: 7.1.5 - 7.1.7 BIG-IP APM versiones: 14.0.0 13.0.0 - 13.1.1 12.1.0 - 11.6.3 11.5.1 - 11.6.3 BIG-IP Edge Client versiones: 7101 - 7150 https://www.certsi.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-big-ip-f5-0

microctfs: pequeños retos en contenedores docker para practicar https://www.hackplayers.com/2018/08/microctfs-pequenos-retos-en-docker.html

Foreshadow Attacks — 3 New Intel CPU Side-Channel Flaws Discovered https://thehackernews.com/2018/08/foreshadow-intel-processor-vulnerability.html Relacionada: https://t.me/sysadmin24x7/1737

Adobe releases important security patches for its 4 popular software https://thehackernews.com/2018/08/adobe-patch-updates.html

Foreshadow: New Speculative Execution Flaws Found in Intel CPUs Researchers and several major tech companies on Tuesday disclosed the details of three new speculative execution side-channel vulnerabilities affecting Intel processors. https://www.securityweek.com/foreshadow-new-speculative-execution-flaws-found-intel-cpus

Oracle Weblogic Server Deserialization RCE (Metasploit) https://cxsecurity.com/issue/WLB-2018080097

macOS Zero-day Flaw Allow Hackers to Bypass Kernel Protection by Invisible Mouse Click Attack https://gbhackers.com/macos-invisible-mouse-clicks-zero-day/amp/

Oracle warns of CVE-2018-3110 Critical Vulnerability in Oracle Database product, patch it now! https://securityaffairs.co/wordpress/75310/hacking/cve-2018-3110-oracle-database.html

Múltiples vulnerabilidades en productos HPE Fecha de publicación: 13/08/2018 Importancia: 4 - Alta Recursos afectados:  HP 1810-24G Switch P.2.22 y anteriores HP 1810-48G Switch PK.1.34 y anteriores HP 1810-8 v2 Switch P.2.22 y anteriores HPE 3PAR Service Processors, versiones anteriores a la SP-4.4.0.GA-110(MU7) HPE 3PAR Service Processors, versiones anteriores a la SP-5.0.0.0-22913(GA) https://www.certsi.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-productos-hpe

DNS Leak Fixed in Kaspersky VPN App for Android Kaspersky has fixed a bug in their Kaspersky VPN app for Android that leaked the computer's configured DNS server while using a VPN connection. https://www.bleepingcomputer.com/news/security/dns-leak-fixed-in-kaspersky-vpn-app-for-android/

Microsoft Research Detours Package Detours is a software package for monitoring and instrumenting API calls on Windows. Detours has been used by many ISVs and is also used by product teams at Microsoft. Detours is now available under a standard open source license (MIT). https://github.com/Microsoft/Detours

project:rosenbridge : hardware backdoors in x86 CPUs https://github.com/xoreaxeaxeax/rosenbridge/

WhatsApp Flaw Lets Users Modify Group Chats to Spread Fake News https://thehackernews.com/2018/08/whatsapp-modify-chat-fake-news.html