Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Critical CyberArk Vulnerability; Unbound DNS over TLS; Adobe Flash Exploit - SANS Internet Storm Center Critical CyberArk Vulnerability; Unbound DNS over TLS; Adobe Flash Exploit


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Tuesday, April 10th 2018

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Tuesday, April 10th 2018
Length: 4:42 minutes
Today's Headline: Critical CyberArk Vulnerability; Unbound DNS over TLS; Adobe Flash Exploit

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Remote Code Execution Vulnerability in CyberArk
https://www.redteam-pentesting.de/de/advisories/rt-sa-2017-014/-cyberark-password-vault-web-access-remote-code-execution

Enabling DNS over TLS using Unbound
https://blog.cloudflare.com/dns-over-tls-for-openwrt/

Turning off Smart Install in Cisco Switches
https://blogs.cisco.com/security/cisco-psirt-mitigating-and-detecting-potential-abuse-of-cisco-smart-install-feature

Adobe Flash Exploit in the Wild for CVE-2018-4878
https://www.youtube.com/watch?v=cjPn1cQy_FE&feature=youtu.be (turn sound off)
http://www.theregister.co.uk/2018/04/09/office_file_attack_reloaded_in_exploit_builder/

Discussion

test 123
Posted by Johannes on Tue Apr 10 2018, 19:59
You mentioned in the podcast that the tool to generate deserialization payloads has not been released. This is inaccurate, the tool is actually well-known among pentesters: https://github.com/pwntester/ysoserial.net

I hope this enrolls me in the Raspberry Pi draw ;)
Posted by newsoft on Wed Apr 11 2018, 16:20

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018
Intrusion Detection In-DepthTysonsOct 15th - Oct 20th 2018
Defending Web Applications Security EssentialsDenverOct 24th - Oct 29th 2018
Intrusion Detection In-DepthWashingtonDec 13th - Dec 18th 2018