Digital Whisper Electronic Magazine issue 95. Written in Hebrew.

Digital Whisper Electronic Magazine issue 96. Written in Hebrew.

Digital Whisper Electronic Magazine issue 97. Written in Hebrew.

Digital Whisper Electronic Magazine issue 98. Written in Hebrew.

Digital Whisper Electronic Magazine issue 99. Written in Hebrew.

Digital Whisper Electronic Magazine issue 100. Written in Hebrew.

Digital Whisper Electronic Magazine issue 101. Written in Hebrew.

Digital Whisper Electronic Magazine issue 102. Written in Hebrew.

Digital Whisper Electronic Magazine issue 103. Written in Hebrew.

Digital Whisper Electronic Magazine issue 105. Written in Hebrew.

Digital Whisper Electronic Magazine issue 106. Written in Hebrew.

Digital Whisper Electronic Magazine issue 107. Written in Hebrew.

Digital Whisper Electronic Magazine issue 104. Written in Hebrew.

The operating system your smartphone is running may be vulnerable to USSD commands that could wipe your entire phone. Tapping on a link to a cleverly coded web page could order you phone to reset itself to factory settings and disintegrate all your private data with it. Any Android phone running Phone.apk version 4.1 or lower is at risk and that's the broader base of them. Install Bitdefender's USSD Wipe Stopper to protect against such attacks. Now, once you would tap on a exploiting link, Bitdefender will intercept the wipe command and ask you to decide what to do next. You may, if unsure, dismiss the USSD command.

Juniper Secure Access suffers from a cross site scripting vulnerability. SA Appliances running Juniper IVE OS 6.0 or higher are affected.

The Juniper SRX suffers from a dual-homed swapfile overflow error that can cause denial of service conditions.

This is a list of older cross site scripting and bypass vulnerabilities associated with older Juniper IVE releases.

Juniper VPN client with remote desktop lets an attacking spawn Internet Explorer prior to authentication.

Juniper Secure Access software suffers from a reflective cross site scripting vulnerability.

Juniper JunOS version 9.x suffers from a html injection vulnerability that allows for cross site scripting attacks.

A special crafted ICMP ECHO REQUEST can cause a denial of service condition on the Juniper SSG20.

Certain Secure Access SA Series SSL VPN products (originally developed by Juniper Networks but now sold and supported by Pulse Secure, LLC) allow privilege escalation, as demonstrated by Secure Access SSL VPN SA-4000 5.1R5 (build 9627) 4.2 Release (build 7631). This occurs because appropriate controls are not performed.

Whitepaper called Skippipe: Skipping the watermark in digital content.

Whitepaper called Windows User Accounts Penetration Testing. Written in Persian.

REVULN 20x3 is an international conference taking place on September 9th through the 10th, 2020 in Bangkok (Thailand) at Ibis Styles Bangkok Sukhumvit Phra Khanong.

The call for papers for H2HC 17th edition is now open. H2HC is a hacker conference taking place in Sao Paulo, Brazil, from October 24th through the 25th of 2020.

This whitepaper is a quick tutorial on pentesting the Zen load balancer.

Whitepaper called Azure Cloud Penetration Testing.

This exploit leverages both invalid typecast and memory disclosure vulnerabilities in Microsoft Silverlight 5 in order to achieve code execution. This exploit code demonstrates remote code execution by popping calc.exe. It was obtained through the Packet Storm Bug Bounty program. Google flags this as malware so only use this if you know what you are doing. The password to unarchive this zip is the word "infected".

Microsoft Silverlight 5 suffers from invalid typecast and memory disclosure vulnerabilities that, when leveraged together, allow for arbitrary code execution. A memory disclosure vulnerability exists in the public WriteableBitmap class from System.Windows.dll. This class allows reading of image pixels from the user-defined data stream via the public SetSource() method. BitmapSource.ReadStream() allocates and returns byte array and a count of array items as out parameters. These returned values are taken from the input stream and they can be fully controlled by the untrusted code. When returned "count" is greater than "array.Length", then data outside the "array" are used as input stream data by the native BitmapSource_SetSource() from agcore.dll. Later all data can be viewed via the public WriteableBitmap.Pixels[] property. Exploitation details related to these findings were purchased through the Packet Storm Bug Bounty program.

QRadar Community Edition version 7.3.1.6 suffers from a local privilege escalation due to insecure file permissions with run-result-reader.sh.

Trend Micro Maximum Security is vulnerable to arbitrary code execution as it allows for creation of registry key to target a process running as SYSTEM. This can allow a malware to gain elevated privileges to take over and shutdown services that require SYSTEM privileges like Trend Micros "Asmp" service "coreServiceShell.exe" which does not allow Administrators to tamper with them. This could allow an attacker or malware to gain elevated privileges and tamper with protected services by disabling or otherwise preventing them to start. Note administrator privileges are required to exploit this vulnerability.

Open-AudIT Professional version 3.3.1 suffers from a remote code execution vulnerability.

PHP version 5.2.3 (Debian) suffers from an imap imap_open disable functions bypass vulnerability.

The imap_open function within PHP, if called without the /norsh flag, will attempt to preauthenticate an IMAP session. On Debian based systems, including Ubuntu, rsh is mapped to the ssh binary. Ssh's ProxyCommand option can be passed from imap_open to execute arbitrary commands. While many custom applications may use imap_open, this exploit works against the following applications: e107 v2, prestashop, SuiteCRM, as well as Custom, which simply prints the exploit strings for use. Prestashop exploitation requires the admin URI, and administrator credentials. suiteCRM/e107/hostcms require administrator credentials.