Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: macOS App Store Preferences Auth Bypass; Electrum Wallet Theft; Exploiting Equation Editor - SANS Internet Storm Center macOS App Store Preferences Auth Bypass; Electrum Wallet Theft; Exploiting Equation Editor


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Thursday, January 11th 2018

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Thursday, January 11th 2018
Length: 5:35 minutes
Today's Headline: macOS App Store Preferences Auth Bypass; Electrum Wallet Theft; Exploiting Equation Editor

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

macOS AppStore Preferences Unlock Authentication Bypass
https://openradar.appspot.com/36350507

JSONRPC Vulnerailbity in Electrum Wallets
https://github.com/spesmilo/electrum-docs/blob/master/cve.rst

Exploiting CVE-2018-0802 (Microsoft Equation Editor)
https://research.checkpoint.com/another-office-equation-rce-vulnerability/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0802

Discussion

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018