01 Archives - Alireza Gharib Blog

January 12, 2025

CVE-2024-12847 – NETGEAR DGN1000 Remote Root Command Injection

CVE ID : CVE-2024-12847 Published : Jan. 10, 2025, 8:15 p.m. | 1 day, 19 hours ago Description : NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can execute arbitrary operating system commands as root by sending crafted HTTP requests to the setup.cgi endpoint. This vulnerability has been exploited…

CVE, Cybersecurity, Cybersecurity awareness, Security, Threat Intelligence

#cve, #cybersecurity, #security, 00, 01, 02
January 12, 2025

Chinese MirrorFace APT targets Japan

Chinese MirrorFace APT targets Japan The MirrorFace Advanced Persistent Threat (APT) group, also known as Earth Kasha, has been linked to a series of cyber-attacks targeting Japan. These attacks have been ongoing since 2019 and have prim … Read more Published Date: Jan 12, 2025 (6 hours, 11 minutes ago) Vulnerabilities has been mentioned in this article.…

CVE, Cybersecurity, Cybersecurity awareness, Security, Threat Intelligence

#cve, #cybersecurity, #security, 01, 02
January 12, 2025

2025-01-09: CVE-2017-0199 XLS –> HTA –> VBS –> steganography –> DBatLoader/GuiLoader style malware

2025-01-09: CVE-2017-0199 XLS –> HTA –> VBS –> steganography –> DBatLoader/GuiLoader style malware 2025-01-09 (THURSDAY): CVE-2017-0199 XLS –> HTA –> VBS –> STEGANOGRAPHY –> DBATLOADER/GUILOADER STYLE MALWARE NOTES: Zip files are password-protected. Of note, this site has a new password scheme … Read more Published Date: Jan 11, 2025 (1 day, 8 hours ago) Vulnerabilities has been…

CVE, Cybersecurity, Cybersecurity awareness, Security, Threat Intelligence

#cve, #cybersecurity, #security, 01, 02
January 12, 2025

Back in 2012, Mark and I detailed a number of iOS kernel mitigations that were introduced in iOS 6 to prevent an attacker from leveraging well-known exploitation techniques such as the zone free list pointer overwrite. Most of these mitigations rely on entropy (of varying degree) provided by the kernel, and are therefore supported by a separate…

00, 01, 04, 08
January 12, 2025

BlackPwn: BlackPhone SilentText Type Confusion Vulnerability

Privacy is a hot topic at the moment – it continues to dominate the headlines as news of new NSA incursions, celebrity phone hacks, and corporate breaches are being reported on an increasingly regular basis. In response to this, a number of products have been brought to market that attempt to provide consumers with a…

00, 01, 02, 03, 04, 05, 06, 07, 08

Tag: 01

CVE-2024-12847 – NETGEAR DGN1000 Remote Root Command Injection

Chinese MirrorFace APT targets Japan

2025-01-09: CVE-2017-0199 XLS –> HTA –> VBS –> steganography –> DBatLoader/GuiLoader style malware

BlackPwn: BlackPhone SilentText Type Confusion Vulnerability