Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Critical CyberArk Vulnerability; Unbound DNS over TLS; Adobe Flash Exploit - SANS Internet Storm Center Critical CyberArk Vulnerability; Unbound DNS over TLS; Adobe Flash Exploit


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Tuesday, April 10th 2018

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Tuesday, April 10th 2018
Length: 4:42 minutes
Today's Headline: Critical CyberArk Vulnerability; Unbound DNS over TLS; Adobe Flash Exploit

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Remote Code Execution Vulnerability in CyberArk
https://www.redteam-pentesting.de/de/advisories/rt-sa-2017-014/-cyberark-password-vault-web-access-remote-code-execution

Enabling DNS over TLS using Unbound
https://blog.cloudflare.com/dns-over-tls-for-openwrt/

Turning off Smart Install in Cisco Switches
https://blogs.cisco.com/security/cisco-psirt-mitigating-and-detecting-potential-abuse-of-cisco-smart-install-feature

Adobe Flash Exploit in the Wild for CVE-2018-4878
https://www.youtube.com/watch?v=cjPn1cQy_FE&feature=youtu.be (turn sound off)
http://www.theregister.co.uk/2018/04/09/office_file_attack_reloaded_in_exploit_builder/

Discussion

test 123
Posted by Johannes on Tue Apr 10 2018, 19:59
You mentioned in the podcast that the tool to generate deserialization payloads has not been released. This is inaccurate, the tool is actually well-known among pentesters: https://github.com/pwntester/ysoserial.net

I hope this enrolls me in the Raspberry Pi draw ;)
Posted by newsoft on Wed Apr 11 2018, 16:20

Login here to join the discussion.

Interested in attending one of my classes? See below for my current schedule.

Defending Web Applications Security EssentialsRestonMay 20th - May 25th 2018
Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018