Explore >> Select a destination

You are here

 parsiya.net
Attack Surface Analysis - Part 2 - Custom Protocol Handlers
| | swordbytes.com
Overwolf 1-Click Remote Code Execution - CVE-2021-33501
2.9 parsecs away

Travel
| | SwordBytes researchers have identified an Unauthenticated Remote Code Execution (RCE) vulnerability in Overwolf's Client Application by abusing a Reflected Cross-Site Scripting (XSS) issue present in the "overwolfstore://" URL handler. This vulnerability allows remote unauthenticated attackers to execute arbitrary commands on the underlying operating system that hosts Overwolf's Client Application.
| | srcincite.io
IAM Whoever I Say IAM :: Infiltrating VMWare Workspace ONE Access Using a 0-Click Exploit
4.0 parsecs away

Travel
| | On March 2nd, I reported several security vulnerabilities to VMWare impacting their Identity Access Management (IAM) solution. In this blog post I will discu...
| | positive.security
Windows 10 RCE: The exploit is in the link | Positive Security
1.9 parsecs away

Travel
| | Chaining a misconfiguration in IE11/Edge Legacy with an argument injection in a Windows 10/11 default URI handler and a bypass for a previous Electron patch, we developed a drive-by RCE exploit for Windows 10. The main vulnerability in the ms-officecmd URI handler has not been patched yet and can also be triggered through other browsers (requires confirmation of an inconspicuous dialog) and desktop applications that allow URI opening.
| | simonroses.com
The Evolution of Software Development: From Manual Coding to AI-Generated Code and the Security Implications | Simon Roses Femerling - Blog
28.7 parsecs away

Travel
| [AI summary] The article discusses the evolution of software development from manual coding to AI-generated code, highlighting the security implications at each stage of development.