Friday Squid Blogging: Squid Prices Rise as Catch Decreases
Reverse Engineering vom 20.04.2018 um 23:26 Uhr | Quelle schneier.comIn Japan: Last year's haul sank 15% to 53,000 tons, according to the JF Zengyoren national federation of fishing cooperatives. The squid catch has fallen by half in just two years. The previous low was plumbed in 2016. Lighter catches have been blamed on changing sea temperatures, which impedes the spawning and growth of the squid. Critics have also pointed...
PoC vom 19.04.2018 um 19:32 Uhr | Quelle packetstormsecurity.comSeagate Personal Cloud model SRN21C running firmware versions 18.104.22.168 and 22.214.171.124 suffers from a persistent cross site scripting vulnerabilities.
Microsoft Windows WLDP CLSID Policy .NET COM Instantiation UMCI Bypass
PoC vom 19.04.2018 um 15:33 Uhr | Quelle packetstormsecurity.comThe enlightened Windows Lockdown Policy check for COM Class instantiation can be bypassed by using a bug in .NET leading to arbitrary code execution on a system with UMCI enabled (e.g. Device Guard).
Reverse Engineering vom 19.04.2018 um 13:51 Uhr | Quelle schneier.comPolice in the UK were able to read a fingerprint from a photo of a hand: Staff from the unit's specialist imaging team were able to enhance a picture of a hand holding a number of tablets, which was taken from a mobile phone, before fingerprint experts were able to positively identify that the hand was that of Elliott Morris....
PoC vom 19.04.2018 um 07:02 Uhr | Quelle packetstormsecurity.comGeist WatchDog Console version 3.2.2 suffers from cross site scripting, XML external entity injection, and insecure file permission vulnerabilities.