home.social

#kernelexploit — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #kernelexploit, aggregated by home.social.

  1. The USB Attack: A Tiny Device, A Huge Risk
    This vulnerability revolves around a Physical Access Vector (PAV) involving a malicious USB device. The attacker planted a USB stick with malicious firmware into the target computer's USB port, allowing it to execute arbitrary code when connected. The device exploited a flaw in the USB Mass Storage Device (MSC) protocol, enabling it to bypass driver restrictions. The attacker crafted the firmware to mimic a removable drive, which was unrecognized by the operating system and thus evaded antivirus scanning. Upon insertion, the malicious firmware triggered a built-in exploit, taking advantage of a kernel vulnerability to gain system-level access. The impact of this vulnerability is severe, as it allows unauthorized access, data theft, and malware injection. The researcher earned $5,000 for reporting this critical issue. Proper remediation involves securing USB ports with hardware restrictions and implementing firmware-level whitelisting to prevent unauthorized devices from executing arbitrary code. Key lesson: Physical access can lead to critical security breaches, making it essential to secure USB ports. #BugBounty #Cybersecurity #PAV #PhysicalAccess #KernelExploit

    medium.com/@bugitrix/%EF%B8%8F

  2. The USB Attack: A Tiny Device, A Huge Risk
    This vulnerability revolves around a Physical Access Vector (PAV) involving a malicious USB device. The attacker planted a USB stick with malicious firmware into the target computer's USB port, allowing it to execute arbitrary code when connected. The device exploited a flaw in the USB Mass Storage Device (MSC) protocol, enabling it to bypass driver restrictions. The attacker crafted the firmware to mimic a removable drive, which was unrecognized by the operating system and thus evaded antivirus scanning. Upon insertion, the malicious firmware triggered a built-in exploit, taking advantage of a kernel vulnerability to gain system-level access. The impact of this vulnerability is severe, as it allows unauthorized access, data theft, and malware injection. The researcher earned $5,000 for reporting this critical issue. Proper remediation involves securing USB ports with hardware restrictions and implementing firmware-level whitelisting to prevent unauthorized devices from executing arbitrary code. Key lesson: Physical access can lead to critical security breaches, making it essential to secure USB ports. #BugBounty #Cybersecurity #PAV #PhysicalAccess #KernelExploit

    medium.com/@bugitrix/%EF%B8%8F

  3. Apple Vision Pro bereits gehackt: Sicherheitslücke entdeckt
    Erst einen Tag nach der Markteinführung der Apple Vision Pro berichtet ein Sicherheitsforscher über eine entscheidende Entdeckung. Ein Kernel-Exploit für visionOS wurde en
    apfeltalk.de/magazin/news/appl
    #News #Vision #AppleUpdate #KernelExploit #AppleSecurityBounty #Sicherheitslcke #Jailbreak #Malware #Technologie #visionOS #AppleVisionPro #Sicherheitsforschung

  4. 🪲 Linux Privilege Escalation vulnerability

    👉 Buffer overflow
    vulnerability within the Netfilter subsystem (CVE-2023-0179)

    👉 Allow the leakage of both stack & heap addresses
    and,potentially, a Local Privilege Escalation to the root

    Poc:
    github.com/TurtleARM/CVE-2023-

    Write up:
    openwall.com/lists/oss-securit

    #infosec #KernelExploit #Exploits #linux

  5. Linux Kernel ksmbd Use-After-Free Remote Code Execution Vulnerability

    👉 Execute arbitrary code on affected installations

    👉 Authentication not required

    👉 Only systems with ksmbd enabled

    zerodayinitiative.com/advisori

    #infosec #cve #vulnerabilities #linux #kernelexploit #binaryexploitation #exploitation

  6. Erst kürzlich kam iOS 13.5.1 heraus, das einen ungepatchten Kernel-Exploit behob. Die Vorversion ist nun nicht mehr installierbar.
    Apple macht Rückweg zum Jailbreak dicht
    #Apple #Betriebssystem #KernelExploit #iOS #iOS135 #iOS1351