每日安全动态推送(11-10)
2023-11-10 11:25:59 Author: mp.weixin.qq.com(查看原文) 阅读量:2 收藏
Tencent Security Xuanwu Lab Daily News

• oss-security - Session File Relative Path Traversal in sudo-rs:
https://www.openwall.com/lists/oss-security/2023/11/02/1

   ・ sudo-rs新的漏洞被发现,影响sudo原始实现,但由于openat函数的使用,安全性较低。 – SecTodayBot

• Office Documents Poisoning in SHVE:
https://blog.doyensec.com/2023/11/03/Office-Document-Poisoning.html

   ・ SHVE利用XSS漏洞和用户对常访问网站的信任,将恶意宏自动注入.docm、.pptm和.xslm格式文件中,使文件看起来正常,但背后却执行恶意代码。这种技术巧妙地结合了用户对下载自合法网站的文档的信任和Office文档中嵌入的宏的潜在危险,为传递恶意载荷提供了微妙的途径。  – SecTodayBot

• Our Pwn2Own journey against time and randomness (part 2):
http://blog.quarkslab.com/our-pwn2own-journey-against-time-and-randomness-part-2.html

   ・ Pwn2Own Netgear RAX30路由器局域网端的两个漏洞:soap server缓冲区溢出(CVE-2023-27368)和拒绝服务漏洞。 – SecTodayBot

• LdrLibraryEx:
https://github.com/Cracked5pider/LdrLibraryEx

   ・ LdrLibraryEx是一个小型的x64库,用于将dll加载到内存中,具有低依赖性、轻量级、易于使用等特点。可以从内存或磁盘加载模块,并支持api sets和绕过镜像加载回调。 – SecTodayBot

• oss-security - Linux: BPF: issues with copy_from_user_nofault():
https://www.openwall.com/lists/oss-security/2023/11/05/5

   ・ 最新的Linux内核存在BPF漏洞,可能导致用户空间内存访问问题。 – SecTodayBot

• What's with ML software and pickles?:
https://blog.nelhage.com/post/pickles-and-ml/

   ・ 这篇文章讨论了在机器学习生态系统中广泛使用Python pickle的安全问题和脆弱性,以及为什么研究人员更倾向于使用pickle而不是其他序列化策略。虽然存在一些问题,但对于研究人员来说,pickle提供了便利性和效率,帮助他们快速实现想法并获取结果。 – SecTodayBot

• GitHub - h4ckm310n/Container-Vulnerability-Exploit: 容器安全漏洞的分析与复现:
https://github.com/h4ckm310n/Container-Vulnerability-Exploit

   ・ 了解容器安全漏洞的分析与复现 – SecTodayBot

• you can learn assembly FAST with this technique (arm64 breakdown):
https://buff.ly/3PM0hFx

   ・ 学习汇编语言的快速技巧,arm64 分解 – SecTodayBot

• Bluetooth Security Timeline — By @XenoKovah of @DarkMentorLLC:
https://darkmentor.com/bt.html

   ・ 这篇文章介绍了一个包含多个TiddlyWiki的资源,其中包括了关于iOS和macOS上通过Apple Wireless Direct Link进行中间人攻击、DoS攻击和跟踪攻击的内容,以及其他与蓝牙安全相关的研究。 – SecTodayBot

• File Timestamps for Apple APFS:
https://medium.com/@josh.lemon/file-timestamps-for-apple-apfs-5a2ff3e34607

   ・ 介绍了苹果APFS文件系统的时间戳,以及不同文件操作对时间戳的影响,适用于事件响应和数字取证人员进行时间线分析。 – SecTodayBot

• oss-security - HNS-2023-03 - HN Security Advisory - Multiple vulnerabilities in Zephyr RTOS:
https://www.openwall.com/lists/oss-security/2023/11/07/1

   ・ Zephyr RTOS存在多个漏洞 – SecTodayBot

* 查看或搜索历史推送内容请访问:
https://sec.today

* 新浪微博账号:腾讯玄武实验室
https://weibo.com/xuanwulab


文章来源: https://mp.weixin.qq.com/s?__biz=MzA5NDYyNDI0MA==&mid=2651959418&idx=1&sn=3d7a896b63ec66246f21d9e52052ed0d&chksm=8baed0e5bcd959f3d57cc1fe6898a52270bf201d4a490849a3f1ef63b647fe411f42ccc6c0bd&scene=58&subscene=0#rd
如有侵权请联系:admin#unsafe.sh