每日安全资讯-2020.3.16

声明:本文所有内容仅用于学习和研究目的,且不能违反《网络安全法》、《刑法》等相关要求,尤其禁止传播,或用于非善良目的。您查看本文,即视为遵守以上约定,否则责任自负。

今日导读:RobbinHood勒索软件另辟渠道,通过驱动漏洞干翻杀毒软件、Artifactory Pro中的SSTI利用、WatchGuard Fireware AD Helper组件中的凭据泄露、Istio访问授权再曝高危漏洞、URL结构及其解析器研究等。

【病毒区】
1、RobbinHood勒索软件另辟渠道,通过驱动漏洞干翻杀毒软件

【漏洞分析区】
2、CVE-2020-7931: SSTI(Server-side Template Injection) exploitation in Artifactory Pro
3、Intel: ShaderCache Arbitrary File Creation EoP(CVE-2020-0516)
4、CVE-2020-8518 - RCE in Horde Webmail CSV import
5、Credential Disclosure in WatchGuard Fireware AD Helper Component(CVE-2020-10532)
6、Istio访问授权再曝高危漏洞(CVE-2020-8595)

【技术分享区】
7、Pwn2Own or Not2Pwn, Part 2(Schneider Electric)
8、How can I close a handle in another process?
9、A secret note to Bug hunters about URL structure and its parsers.
10、Hosting the CLR and executing .NET assemblies from Go
11、KTRW - The journey to build a debuggable iPhone
12、Our Full Report on the Voatz Mobile Voting Platform
13、Modern Memory Safety: C/C++ Vulnerability Discovery, Exploitation, Hardening
14、HotFuzz: Discovering Algorithmic Denial-of-Service Vulnerabilities Through Guided Micro-Fuzzing
15、SecWiki周刊(2020/03/09-2020/03/15)
工具-‘SMBGhost’ SMB3.1.1 ‘SMB2_COMPRESSION_CAPABILITIES’ Buffer Overflow (PoC)
工具-Icebox is a Virtual Machine Introspection solution that enable you to stealthily trace and debug any process (kernel or user).
工具-Richsploit: One tool to exploit all versions of RichFaces ever released
工具-bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统

1