每日安全资讯-2020.8.3

声明:本文所有内容仅用于学习和研究目的,且不能违反《网络安全法》、《刑法》等相关要求,尤其禁止传播,或用于非善良目的。您查看本文,即视为遵守以上约定,否则责任自负。

今日导读:Grafana未授权SSRF漏洞分析、MacOS <=10.15.5本地提权、Websphere CVE-2020-4450漏洞分析、一种新的iOS内核利用技术,可将一个字节控制的堆溢出直接转换为用于任意物理地址的读/写、苹果的核心是PPL-打破XNU内核等。

【病毒区】
1、WastedLocker technical analysis

【漏洞分析区】
2、Critical Arbitrary File Upload Vulnerability Patched in wpDiscuz Plugin(80,000 installed)

3、Tor 0day: Burning Bridges
https://www.hackerfactor.com/blog/index.php?/archives/889-Tor-0day-Burning-Bridges.html

4、Unauthenticated Full-Read SSRF in Grafana(CVE-2020-13379)

5、A local privilege escalation chain from user to kernel for MacOS <=10.15.5.(CVE-2020–9854)

6、“BootHole” vulnerability in the GRUB2 bootloader opens up Windows and Linux devices using Secure Boot to attack(CVE-2020-10713).
https://eclypsium.com/wp-content/uploads/2020/07/Theres-a-Hole-in-the-Boot.pdf

7、Critical Secomea, Moxa, Ewon pre-auth RCE vulnerabilities(CVE-2020-14500, CVE-2020-14511, CVE-2020-14498).

8、CVE-2020–9934: Bypassing the macOS Transparency, Consent, and Control (TCC) Framework for unauthorized access to sensitive user data

9、Kubernetes Vulnerability Puts Clusters at Risk of Takeover (CVE-2020-8558)
https://unit42.paloaltonetworks.com/cve-2020-8558/

10、T3反序列化 Weblogic12.2.1.4.0 JNDI注入
https://xz.aliyun.com/t/8024

11、Websphere CVE-2020-4450漏洞分析

【技术分享区】
12、手工编写简化版CommonsCollections6,带你实现Java8全版本反序列化利用

13、a new iOS kernel exploitation technique that turns a one-byte controlled heap overflow directly into a read/write primitive for arbitrary physical addresses

14、The core of Apple is PPL: Breaking the XNU kernel’s kernel

15、MMS Exploit Part 3: Constructing the Memory Corruption Primitives

16、Using the InterPlanetary File System For Offensive Operations

17、SecWiki周刊(2020/07/27-2020/08/02)
https://www.sec-wiki.com/weekly/335

#工具#FestIn is a tool for discovering open S3 Buckets starting from a domains.

#工具#Removing Kernel Callbacks Using Signed Drivers-a write-up and tool to blind all EDRs on a system.

#工具#HVMI - a virtual machine introspection library capable of offering real time protection with minimal performance impact to Windows and Linux VMs running on KVM and Xen.