Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Intel ME Update; Fuzzing x86 CPUs; Android MediaProjection API Vulnerability - Internet Security | DShield Intel ME Update; Fuzzing x86 CPUs; Android MediaProjection API Vulnerability


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Tuesday, November 21st 2017

A daily summary of cyber security news from the SANS Internet Storm Center
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Tuesday, November 21st 2017
Length: 5:42 minutes
Today's Headline: Intel ME Update; Fuzzing x86 CPUs; Android MediaProjection API Vulnerability

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Intel Patches Several Vulnerabilities in its Management Engine
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr

Sandsifter CPU Fuzzer
https://github.com/xoreaxeaxeax/sandsifter/

Android MediaProjection API Allows For Screen Capture / Audio Recording Without User Consent
https://labs.mwrinfosecurity.com/assets/BlogFiles/mwri-android-MediaProjection-tapjacking-advisory-2017-11-13.pdf

BusyBox Autocompletion Vulnerability
https://www.twistlock.com/2017/11/20/cve-2017-16544-busybox-autocompletion-vulnerability/

Discussion

Login here to join the discussion.

Interested in attending one of my classes? See below for my current schedule.

IPv6 EssentialsWashingtonDec 12th - Dec 13th 2017
Defending Web Applications Security EssentialsWashingtonDec 14th - Dec 19th 2017