189 - Compromising Azure, Password Verification Fails, and Readline Crime Some malformed hashes will “validate” with any value compared using password_verify. This is du... 2023-2-22 04:49:17 | 阅读: 20 | 收藏 | DAY[0] - dayzerosec.com readline malformed haproxy finger encountered

188 - Rusty Kernel Bugs, mast1c0re, and OpenSSH A use-after-free (UAF) yielding double free in OpenSSH that’s hittable pre-authentication. The... 2023-2-16 07:45:0 | 阅读: 25 | 收藏 | DAY[0] - dayzerosec.com kex ps2 vuln openssh overflow

187 - Top 2022 Web Hacking Techniques and a Binance Bug A small bug in processing/validating the entries in the Merkel tree resulting in the theft of 2... 2023-2-15 04:45:51 | 阅读: 21 | 收藏 | DAY[0] - dayzerosec.com bsc windows remote separators tackle

186 - An XNU Exploit and a Chrome Heap Overflow A 19-year-old bug in XNUs Data Link Interface Layer o... 2023-2-9 08:45:59 | 阅读: 21 | 收藏 | DAY[0] - dayzerosec.com ifnet texture addrs comparing infos

185 - Facebook Account Takeovers and a vBulletin RCE A bit of research on leaking access tokens from OAuth2/OIDC flows... 2023-2-8 04:45:9 | 阅读: 41 | 收藏 | DAY[0] - dayzerosec.com attacker compat getprotocol facebook victim

184 - KASAN comes to Windows and Shuffling ROP Gadgets Home Blog Podcast Vulns About Us Contact... 2023-2-2 08:45:3 | 阅读: 24 | 收藏 | DAY[0] - dayzerosec.com twitch enhancement pwning loader

183 - CSS Injection and a Google Cloud Project Takeover Bug Fun little CSS injection turned full-read SSRF thanks to an (imo)... 2023-2-1 04:45:26 | 阅读: 41 | 收藏 | DAY[0] - dayzerosec.com injection ssrf inject proxy kayak

182 - Exploiting Null Derefs and Windows Type COM-fusion The last time we covered a “how to exploit a null-deref in... 2023-1-26 08:45:49 | 阅读: 19 | 收藏 | DAY[0] - dayzerosec.com overflow memory oops overflows network

181 - Cloud Bugs and More Vulns in Galaxy App Store Cool, yet simple finding from the DataDog security team where cal... 2023-1-25 04:55:32 | 阅读: 18 | 收藏 | DAY[0] - dayzerosec.com ssh username attacker cloud samsung

180 - An iPod Nano Bug, XNU Vuln, and a WebKit UAF A trivial out of bounds access in the iPod nano 3rd-5th generation’s USB stack in the bootRO... 2023-1-19 08:45:16 | 阅读: 19 | 收藏 | DAY[0] - dayzerosec.com unaligned attacker aligned memory

179 - Client-Side Path Traversal and Hiding Your Entitlement(s) Some funny vulns in an undisclosed forum’s “teams” feature where... 2023-1-18 04:45:8 | 阅读: 22 | 收藏 | DAY[0] - dayzerosec.com parcel memory parcels lazyvalue

178 - Attacking Bhyves and a Kernel UAF An out-of-bounds read/write in FreeBSD’s bhyve hypervisor.... 2023-1-12 08:45:14 | 阅读: 21 | 收藏 | DAY[0] - dayzerosec.com dynset e82545 descriptors infoleak netfilter

177 - Web Hackers vs. Cars and a Facebook Account Takeover A total of either issues impacting various companies in the automotive industry, mix of issues... 2023-1-11 04:45:44 | 阅读: 36 | 收藏 | DAY[0] - dayzerosec.com sso totp username mercedes injection

176 - JS Type Confusions and Bringing Back Stack Attacks A JIT optimization based type confusion in jscript9. The ro... 2022-12-15 08:45:19 | 阅读: 27 | 收藏 | DAY[0] - dayzerosec.com int32array mntn smc memory anon

175 - Pwn2Own Bugs and WAF Bypasses Two vulns in Netgear RAX30 routers that were patched 2 days... 2022-12-14 04:45:32 | 阅读: 39 | 收藏 | DAY[0] - dayzerosec.com injection bypass integers attacker cloud

174 - A Huawei Hypervisor Vuln and More Memory Safety An interesting vulnerability in Huawei’s security hypervisor which Huawei devices use to protec... 2022-12-8 08:45:21 | 阅读: 9 | 收藏 | DAY[0] - dayzerosec.com hypervisor memory hv pagetable allocator

173 - Remotely Controlling Hyundai and a League of Legends XSS The core vulnerability here is a case where a DOM clobberin... 2022-12-7 07:13:3 | 阅读: 26 | 收藏 | DAY[0] - dayzerosec.com attacker easyxdm remote referrer loaded

172 - Patch Gaps and Apple Neural Engine Vulns An out-of-bounds write in the ZinComputeProgramGetNamesFromMultiPlaneLinear() and ZinCompute... 2022-12-1 08:45:18 | 阅读: 24 | 收藏 | DAY[0] - dayzerosec.com planes ane fetched

171 - Tailscale RCE, an SQLi in PAM360, and Exploiting Backstage A number of bugs in Tailscale leading to an RCE chain.So many b... 2022-11-30 03:45:20 | 阅读: 20 | 收藏 | dayzerosec.com localapi peerapi attacker plane backstage

170 - Hacking Pixel Bootloaders and Injecting Bugs A timing-based side-channel in the CHECK_DATA Device Configuration Data could allow the valu... 2022-11-24 08:45:35 | 阅读: 10 | 收藏 | dayzerosec.com timing mcu cores glitched