每日安全资讯-2020.2.20

声明:本文所有内容仅用于学习和研究目的,且不能违反《网络安全法》、《刑法》等相关要求,尤其禁止传播,或用于非善良目的。您查看本文,即视为遵守以上约定,否则责任自负。

今日导读:Fanta安卓恶意软件分析、ABBYY FineReader本地提权漏洞分析、Viper RGB驱动程序多个漏洞分析、利用本机模块在IIS上添加后门、当匹配字段不需要匹配时-SDN中的缓冲数据包劫持等。

【病毒区】
1、Write-up on Fanta Android malware(In Russian)

【漏洞分析区】
2、The bug was “fixed” by Apple in 2012 as CVE-2012-3727 but fixed the bug in the wrong function (dns4 one) (fixed it in 13.3.1?).
3、Recognizing local privilege escalation in ABBYY FineReader
4、Viper RGB Driver Multiple Vulnerabilities
5、Finding Python ReDoS bugs at scale using Dlint and r2c (CVE-2020-8492)

【技术分享区】
6、IIS Raid – Backdooring IIS Using Native Modules
7、The Missing LNK — Correlating User Search LNK files
8、Walkthrough of a vulnerability in a Borland product and how we used information gathered from a CVE(CVE-2015-6946) to write a proof of concept exploit.
9、Hacking AWS Cognito Misconfigurations
10、Symbolic Hooks Part 2 : Getting the Target Name
11、谈一谈Linux与suid提权
12、When Match Fields Do Not Need to Match:Buffered Packet Hijacking in SDN
13、security assessment of cisco aci(also talking about SDN vulnerabilities via the control plane and/or management protocols)
14、f5:2019 Phishing and Fraud Report
15、Remote Code Execution on a Tesla server due to vulnerable SQL Server Reporting Services (CVE-2020-0618).
16、Hacking SMS API Service Provider of a Company |Android App Static Security Analysis | Bug Bounty POC
工具-DecryptTeamViewer:Enumerate and decrypt TeamViewer credentials from Windows registry(CVE-2019-18988)

5 4 3 2 1