Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: macOS App Store Preferences Auth Bypass; Electrum Wallet Theft; Exploiting Equation Editor - SANS Internet Storm Center macOS App Store Preferences Auth Bypass; Electrum Wallet Theft; Exploiting Equation Editor


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Thursday, January 11th 2018

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Thursday, January 11th 2018
Length: 5:35 minutes
Today's Headline: macOS App Store Preferences Auth Bypass; Electrum Wallet Theft; Exploiting Equation Editor

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

macOS AppStore Preferences Unlock Authentication Bypass
https://openradar.appspot.com/36350507

JSONRPC Vulnerailbity in Electrum Wallets
https://github.com/spesmilo/electrum-docs/blob/master/cve.rst

Exploiting CVE-2018-0802 (Microsoft Equation Editor)
https://research.checkpoint.com/another-office-equation-rce-vulnerability/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0802

Discussion

Login here to join the discussion.

Interested in attending one of my classes? See below for my current schedule.