F5 Big IP - ASM stack-based buffer overflow in is_hdr_criteria_matches (CVE-2021-22992) Security News & Discussion

---

• F5 Big IP - ASM stack-based buffer overflow in is_hdr_criteria_matches (CVE-2021-22992)
• Technical Advisory – 15 Vulnerabilities in Netgear ProSAFE Plus JGS516PE / GS116Ev2 Switches including remote pre-auth firmware installation (which isn't cryptographically signed)
• An introduction to kernel exploitation part 1!
• Creating a Homelab for Active Directory and ELK
• CCTV: Now You See Me, Now You Don't
• SerenityOS: Kernel Hacking Adventures
• Tactics, Techniques, and Procedures (TTPs) Used by HAFNIUM to Target Microsoft Exchange Servers
• Dumping the Sonos One smart speaker
• �� F5 BIG-IP, BIG-IQ Centralized Management unauthenticated RCE Leads Complete System Compromise (CVE-2021-22986)
• LocalStack RCE via CSRF, unpatched
• One day short of a full chain: Part 1 - Android Kernel arbitrary code execution
• PoW Shield: Application Layer Proof of Work DDoS Filter- PoW Shield is an open-source project that provides DDoS protection/mitigation on OSI application layer by authenticating traffic using a simple proof-of-work validation process
• CSRF to RCE Chain in Zabbix

F5 Big IP - ASM stack-based buffer overflow in is_hdr_criteria_matches (CVE-2021-22992) Posted: 10 Mar 2021 08:28 AM PST submitted by /u/Gallus [link] [comments]

Technical Advisory – 15 Vulnerabilities in Netgear ProSAFE Plus JGS516PE / GS116Ev2 Switches including remote pre-auth firmware installation (which isn't cryptographically signed) Posted: 10 Mar 2021 03:45 AM PST submitted by /u/digicat [link] [comments]

An introduction to kernel exploitation part 1! Posted: 10 Mar 2021 10:47 AM PST submitted by /u/JordyZomer [link] [comments]

Creating a Homelab for Active Directory and ELK Posted: 10 Mar 2021 09:14 AM PST submitted by /u/Hausec [link] [comments]

CCTV: Now You See Me, Now You Don't Posted: 09 Mar 2021 04:19 PM PST submitted by /u/vbakaitis [link] [comments]

SerenityOS: Kernel Hacking Adventures Posted: 10 Mar 2021 08:26 AM PST submitted by /u/Gallus [link] [comments]

Tactics, Techniques, and Procedures (TTPs) Used by HAFNIUM to Target Microsoft Exchange Servers Posted: 10 Mar 2021 09:42 AM PST submitted by /u/malware_bender [link] [comments]

Dumping the Sonos One smart speaker Posted: 10 Mar 2021 08:30 AM PST submitted by /u/Gallus [link] [comments]

�� F5 BIG-IP, BIG-IQ Centralized Management unauthenticated RCE Leads Complete System Compromise (CVE-2021-22986) Posted: 10 Mar 2021 02:01 PM PST submitted by /u/Vulmon [link] [comments]

LocalStack RCE via CSRF, unpatched Posted: 10 Mar 2021 03:14 AM PST submitted by /u/websecdev [link] [comments]

One day short of a full chain: Part 1 - Android Kernel arbitrary code execution Posted: 10 Mar 2021 09:23 AM PST submitted by /u/0xdea [link] [comments]

PoW Shield: Application Layer Proof of Work DDoS Filter- PoW Shield is an open-source project that provides DDoS protection/mitigation on OSI application layer by authenticating traffic using a simple proof-of-work validation process Posted: 10 Mar 2021 01:54 AM PST submitted by /u/RuiSiang [link] [comments]

CSRF to RCE Chain in Zabbix Posted: 09 Mar 2021 03:21 PM PST submitted by /u/nvn1729 [link] [comments]

You are subscribed to email updates from /r/netsec - Information Security News & Discussion. To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States