Home > Uncategorized > Security News #0x0C

Security News #0x0C

  • The big news of the week has been PHP and CVE-2012-1823 (and CVE-2012-2311). The group Eindbazen found the bug while playing the Nullcon CTF competition in January. They privately informed the PHP group, who were working on a fix. However this past week a bug report containing the issues was made public, and, well, things got complicated fast. A patch was put out, but apparently does not completely solve the problem. Here is some light reading….
  • A new version (3.4.0) of Ophcrcak has been released. This cracks Windows passwords using Rainbow tables, and is available in source, as a Windows binary, or as a Live CD.
  • Ben Toews has a nice white paper on different kinds of small shells, including a POC of httpShell.
  • Last week, we gave a shout out about a post on port forwarding in Meterpreter. This week, we have a nice discussion by Ed Skoudis on pivoting with Meterpreter.
  • Metasploit has a new module for a remote code injection attack against WebCalendar <=1.2.4.
  • At our club meeting, I mentioned the use of Sticky Keys as a privilege escalation attack. The folks at Carnal 0wnage have a blog post that illustrates how it is done.
  • Here is a nice piece on how to recover deleted files from a Linux system.
  • The NovaInfosecPortal has information and news for Northern Virginia, the District, and Maryland.
Categories: Uncategorized
  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: