Outer Web | Explore

Explore >> Select a destination

You are here		www.thezdi.com Zero Day Initiative - Pwn2Own Berlin 2025: Day Three Results
\|	\|	reverse.put.as Patching what Apple doesn't want to or how to make your "old" OS X versions a bit safer \| Reverse Engineering	12.6 parsecs away Travel
\|	\|	Today a local privilege escalation vulnerability was disclosed in this blog post. It describes a vulnerability in IOBluetoothFamily kernel extension (IOKit is a never-ending hole of security vulnerabilities). Mavericks and most probably all previous versions are vulnerable but not Yosemite. The reason for this is that Apple silently patched the bug in Yosemite. This is not a new practice, where Apple patches bugs in the latest and newly released OS X version and doesn't care about older versions.	12.6 parsecs away Travel
\|	\|	jericho.blog Was It Really GPAC? (No!) Getting a CVE Removed from CISA KEV - Rants of a deranged squirrel.	13.2 parsecs away Travel
\|	\|	On October 3, 2024, Aquasec published a report about newly discovered malware named "perfctl", targeting Linux servers. In it they cite the malware taking advantage of misconfigurations, as well as attempting to "exploit the Polkit vulnerability (CVE-2021-4043) to escalate privileges." Only problem is that CVE-2021-4043 isn't "the Polkit vulnerability", which in itself is problematic since...	13.2 parsecs away Travel
\|	\|	bitcoincore.org Bitcoin Core :: CVE-2015-20111 - Remote code execution due to bug in miniupnpc	16.9 parsecs away Travel
\|	\|	CVE-2015-20111 - Remote code execution due to bug in miniupnpc	16.9 parsecs away Travel
\|	\|	gist.github.com Generic `printf` implementation in Idris2 · GitHub	24.0 parsecs away Travel
\|		Generic `printf` implementation in Idris2. GitHub Gist: instantly share code, notes, and snippets.	24.0 parsecs away Travel