TFW a rep for a vendor you are trying to get a login for to exploit their software asks for a meeting to discuss your company's requirements
January 29, 2024 at 3:13 PM
TFW a rep for a vendor you are trying to get a login for to exploit their software asks for a meeting to discuss your company's requirements
Reposted by Joel Land
So apparently starting with Linux 5.18, ASLR is weakened for 64-bit executables, and absolutely BROKEN (i.e. not present) for 32-bit executables when the library is 2MB or larger.
Oops? 🤦♂️
zolutal.github.io/aslrnt/
(Insert desire for BlueSky to support animated GIFs here)
Oops? 🤦♂️
zolutal.github.io/aslrnt/
(Insert desire for BlueSky to support animated GIFs here)
January 12, 2024 at 5:32 PM
So apparently starting with Linux 5.18, ASLR is weakened for 64-bit executables, and absolutely BROKEN (i.e. not present) for 32-bit executables when the library is 2MB or larger.
Oops? 🤦♂️
zolutal.github.io/aslrnt/
(Insert desire for BlueSky to support animated GIFs here)
Oops? 🤦♂️
zolutal.github.io/aslrnt/
(Insert desire for BlueSky to support animated GIFs here)
Reposted by Joel Land
Full info on the ownCloud vulnerability / exploit are live now, from Rapid7
CVE-2023-49103: Critical Information Disclosure in ownCloud Graph API | Rapid7 Blog
On November 21, 2023, ownCloud disclosed CVE-2023-49103, an unauthenticated information disclosure vulnerability affecting ownCloud.
www.rapid7.com
December 1, 2023 at 6:00 PM
Full info on the ownCloud vulnerability / exploit are live now, from Rapid7
Alright, infosec twitter 2.0… Go!
November 18, 2023 at 6:07 PM
Alright, infosec twitter 2.0… Go!