Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: New WebLogic Vuln Exploited; MSFt Edge XSS Protection Issue; Intel ME - SANS Internet Storm Center New WebLogic Vuln Exploited; MSFt Edge XSS Protection Issue; Intel ME


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Monday, July 23rd 2018

A daily summary of cyber security news from the SANS Internet Stormcenter
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Monday, July 23rd 2018
Length: 5:15 minutes
Today's Headline: New WebLogic Vuln Exploited; MSFt Edge XSS Protection Issue; Intel ME

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

New WebLogic Vulnerability Already Exploited
https://isc.sans.edu/forums/diary/Weblogic+Exploit+Code+Made+Public+CVE20182893/23896/

Microsoft Edge Turns off XSS Protection
https://portswigger.net/daily-swig/xss-protection-disappears-from-microsoft-edge

Intel Management Engine Vulnerabilities
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00112.html

User Tracking With TLS 1.2 Certificates
http://tma.ifip.org/wordpress/wp-content/uploads/2017/06/tma2017_paper2.pdf

Discussion

Login here to join the discussion.

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018
Intrusion Detection In-DepthTysonsOct 15th - Oct 20th 2018
Defending Web Applications Security EssentialsDenverOct 24th - Oct 29th 2018
Intrusion Detection In-DepthWashingtonDec 13th - Dec 18th 2018