Another batch of vulnerabilities released, by @TalosSecurity now for Foxit Reader:

- CVE-2024-25938 - Foxit Reader Barcode widget Calculate event use-after-free vulnerability
- CVE-2024-25648 - Foxit Reader ComboBox widget Format event use-after-free vulnerability
- CVE-2024-25575 - Foxit Reader Lock object fields property type confusion vulnerability

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1958
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1959
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1963

(I should create a bot for these already...)

[RSS] iOS: a journey in the USB networking stack

https://www.synacktiv.com/en/publications/ios-a-journey-in-the-usb-networking-stack

[RSS] Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP with Syzkaller

https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller

The fact that this blows so many peoples minds (mine included) shows how awfully shit UI discoverability on mobile is.

Sooo...MS still doesn't like publishing mpengine PDB's?

[RSS] Local Privilege Escalation Vulnerability in Ant Media Server (CVE-2024-32656)

https://www.praetorian.com/blog/local-privilege-escalation-vulnerability-in-ant-media-server-cve-2024-32656/

[RSS] Judge0 Sandbox Escape - CVE-2024-29021, CVE-2024-28185 and CVE-2024-28189

https://tantosec.com/blog/judge0/

[RSS] Fuzzer Development 1: The Soul of a New Machine (2023.11.04)

https://h0mbre.github.io/New_Fuzzer_Project/

I wouldn't post the n+1. new fuzzer attempt, but h0mbre's works always worth checking out!

[RSS] Souls without bodies, phantom types shenanigans

https://www.synacktiv.com/en/publications/souls-without-bodies-phantom-types-shenanigans

"In this article, we will present strange data types that only exists in the realm of types, called phantom types. We will also briefly introduce GADTs, and how to emulate some of their safety guarantees in languages where they are not available."

[RSS] [PlayStation] high - Remote vulnerabilities in spp (12500.00USD)

https://hackerone.com/reports/2177925

Series of DICOM parser vulnerabilities disclosed by @TalosSecurity :

CVE-2024-22373 - Grassroot DICOM JPEG2000Codec::DecodeByStreamsCommon out-of-bounds write vulnerability

CVE-2024-22391 - Mathieu Malaterre Grassroot DICOM LookupTable::SetLUT out-of-bounds write vulnerability

CVE-2024-25569 - Grassroot DICOM RAWCodec::DecodeBytes out-of-bounds read vulnerability

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1935
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1924
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1944

[RSS] Micropatches Released for Windows MSHTML Platform Remote Code Execution Vulnerability (CVE-2023-35628)

https://blog.0patch.com/2024/04/micropatches-released-for-windows_25.html

[RSS] Issues Resolving Symbols on Windows 11 on ARM64

https://www.tiraniddo.dev/2024/04/issues-resolving-symbols-on-windows-11.html

[RSS] NodeZero: Testing for Exploitability of Palo Alto Networks CVE-2024-3400

https://www.horizon3.ai/insights/nodezero-testing-for-exploitability-of-palo-alto-networks-cve-2024-3400/

This reminds me of my days spent on AV vulnerability hunting :)

RE: https://social.linux.pizza/users/standaloneSA/statuses/112346503511568045

[oss-security] libksieve (used by kmail/kontact) sent password as username

https://seclists.org/oss-sec/2024/q2/174

#whoops

Good luck everyone!

#DEFCON #CTF
https://defcon.social/@nautilusinstitute/112344576931750426

Behold: THE DEBUGGER PEDAL

Powered by Chiba City Runes and Hacker Stickers (also xremap).

With this technology, I'll be unstoppable!