Attack of the Week: Group Messaging in WhatsApp and Signal Security News & Discussion

---

• Attack of the Week: Group Messaging in WhatsApp and Signal
• macOS High Sierra's App Store System Preferences Can Be Unlocked With Any Password
• VMware Horizon desktop agent privilege escalation vulnerability (CVE-2017-4946)
• Parity Ethereum Client <= v1.6.10 Dapp Browser webproxy token reuse same-origin policy bypass (with poc) (CVE-2017-18016)
• Rumble In The Jungo - A Code Execution Walkthrough - CVE-2018-5189
• Spectre & Meltdown Checker
• Cisco Talos Blog: Multiple Vulns in CPP and Parity Ethereum Client
• Splunk Specter and Meltdown Checker UF based on speed47
• Reverse Engineering the OBi200 Google Voice Appliance: Part 3
• Learn how to write a TCP Bind Shell in Assembly (ARM 32-bit)
• Perfect SAP Penetration testing. Part 3: The Scope of Vulnerability Search
• A vulnerability in an adult VR app exposes customers details
• Many Formulas, One Calc – Exploiting a New Office Formula Vulnerability
• Local Network ARP-Scan
• Detecting Spectre And Meltdown Using Hardware Performance Counters

Attack of the Week: Group Messaging in WhatsApp and Signal Posted: 10 Jan 2018 07:04 AM PST submitted by /u/vamediah [link] [comments]

macOS High Sierra's App Store System Preferences Can Be Unlocked With Any Password Posted: 10 Jan 2018 12:00 PM PST submitted by /u/nplus [link] [comments]

VMware Horizon desktop agent privilege escalation vulnerability (CVE-2017-4946) Posted: 10 Jan 2018 07:51 AM PST submitted by /u/h3xstream_ [link] [comments]

Parity Ethereum Client <= v1.6.10 Dapp Browser webproxy token reuse same-origin policy bypass (with poc) (CVE-2017-18016) Posted: 10 Jan 2018 09:14 AM PST submitted by /u/-tin- [link] [comments]

Rumble In The Jungo - A Code Execution Walkthrough - CVE-2018-5189 Posted: 10 Jan 2018 05:30 AM PST submitted by /u/kurtisebear [link] [comments]

Spectre & Meltdown Checker Posted: 10 Jan 2018 12:07 AM PST submitted by /u/charlyyyyv [link] [comments]

Cisco Talos Blog: Multiple Vulns in CPP and Parity Ethereum Client Posted: 10 Jan 2018 05:34 AM PST submitted by /u/WorksAtCisco [link] [comments]

Splunk Specter and Meltdown Checker UF based on speed47 Posted: 10 Jan 2018 05:33 AM PST submitted by /u/jokinawa [link] [comments]

Reverse Engineering the OBi200 Google Voice Appliance: Part 3 Posted: 10 Jan 2018 12:44 PM PST submitted by /u/rwestergren [link] [comments]

Learn how to write a TCP Bind Shell in Assembly (ARM 32-bit) Posted: 10 Jan 2018 09:23 AM PST submitted by /u/fox0x01 [link] [comments]

Perfect SAP Penetration testing. Part 3: The Scope of Vulnerability Search Posted: 10 Jan 2018 10:07 AM PST submitted by /u/vah_13 [link] [comments]

A vulnerability in an adult VR app exposes customers details Posted: 10 Jan 2018 12:10 AM PST submitted by /u/digitalinterruption [link] [comments]

Many Formulas, One Calc – Exploiting a New Office Formula Vulnerability Posted: 09 Jan 2018 10:54 AM PST submitted by /u/Omer_Gull [link] [comments]

Local Network ARP-Scan Posted: 10 Jan 2018 06:09 AM PST submitted by /u/berkdusunurx [link] [comments]

Detecting Spectre And Meltdown Using Hardware Performance Counters Posted: 09 Jan 2018 06:45 PM PST submitted by /u/cwmbran [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States