Last Week in Security (LWiS) - 2024-07-15
2024-7-16 11:59:0 Author: blog.badsectorlabs.com(查看原文) 阅读量:18 收藏

HavocC3 SSRF (@_chebuya), PDF rendering diffs (@d4d89704243), Windows phishing 0day (@_CPResearch_), 3x Sharepoint RCEs (@testanull), Dynamics 365 flaws (@frycos), Mythic 3.3 Beta (@its_a_feature_), and more!

Last Week in Security is a summary of the interesting cybersecurity news, techniques, tools and exploits from the past week. This post covers 2024-07-08 to 2024-07-15.

News

Techniques and Write-ups

Tools and Exploits

  • SSD Advisory - Sonicwall Sma100 Stored XSS to RCE - This one is particularly bad as the stored XSS can be added with a failed logon and triggered when an admin browsers to the Log / View page. After that a command injection gets remote code execution.
  • CVE-2024-22274 - Authenticated Remote Code Execution in VMware vCenter Server.
  • MS-SharePoint-July-Patch-RCE-PoC PoCs for CVE-2024-38094, CVE-2024-38024, and CVE-2024-38023.
  • mailgoose - A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.
  • collateral-damage - Kernel exploit for Xbox SystemOS using CVE-2024-30088.
  • pdf-exploit - pdf exploit integration.
  • gigaproxy - One proxy to rule them all.
  • IHxExec - Process injection alternative.

New to Me and Miscellaneous

This section is for news, techniques, write-ups, tools, and off-topic items that weren't released last week but are new to me. Perhaps you missed them too!

Techniques, tools, and exploits linked in this post are not reviewed for quality or safety. Do your own research and testing.


文章来源: https://blog.badsectorlabs.com/last-week-in-security-lwis-2024-07-15.html
如有侵权请联系:admin#unsafe.sh