Explore >> Select a destination
|
You are here 
|
blog.silentsignal.eu | ||
| | | | |
www.modzero.ch
|
|
| | | | | [AI summary] This advisory details critical vulnerabilities in Cisco IP phones' web interfaces that allow remote attackers to gain full control of the devices without authentication. The vulnerabilities include buffer overflow, path traversal, and CSRF weaknesses, which can be exploited to install backdoors, exfiltrate data, and use the phones as attack vectors. | |
| | | | |
comsecuris.com
|
|
| | | | | [AI summary] This blog post discusses a detailed exploit chain targeting a mobile phone's application processor OS through a compromised modem. The author outlines the process of identifying vulnerabilities in the baseband firmware, reverse engineering the MT6795's cellular stack layers, and attempting to fuzz the MM layer for potential memory corruption issues. The post also touches on the challenges of creating a persistent rootkit via the modem and the importance of hardware isolation in securing mobile platforms. | |
| | | | |
blog.quarkslab.com
|
|
| | | | | Following our presentation at Black Hat USA, in this blog post we provide some details on CVE-2022-20233, the latest vulnerability we found on Titan M, and how we exploited it to obtain code execution on the chip. | |
| | | | |
eshard.com
|
|
| | | As software systems become more complex, traditional debugging methods are no longer sufficient. This necessity led to the development of Time Travel Analysis. | ||
