Vulnerabilities and exploits – WindowsTechs.com

Cinterion EHS5 3G UMTS/HSPA Module Research

Posted on June 13, 2024 by Kaspersky ICS CERT

We performed the security analysis of a Telit Cinterion modem in course of a bigger project of security assessment of a popular model of a truck and found eight vulnerabilities. Continue reading Cinterion EHS5 3G UMTS/HSPA Module Research→

QR code SQL injection and other vulnerabilities in a popular biometric terminal

Posted on June 11, 2024 by Georgy Kiguradze

The report analyzes the security properties of a popular biometric access control terminal made by ZkTeco and describes vulnerabilities found in it. Continue reading QR code SQL injection and other vulnerabilities in a popular biometric terminal→

A journey into forgotten Null Session and MS-RPC interfaces

Posted on May 23, 2024 by Haidar Kabibo

This is the first part of the research, devoted to null session vulnerability, unauthorized MS-RPC interface and domain user enumeration. Continue reading A journey into forgotten Null Session and MS-RPC interfaces→

QakBot attacks with Windows zero-day (CVE-2024-30051)

Posted on May 14, 2024 by Boris Larin, Mert Degirmenci

In April 2024, while researching CVE-2023-36033, we discovered another zero-day elevation-of-privilege vulnerability, which was assigned CVE-2024-30051 identifier and patched on May, 14 as part of Microsoft’s patch Tuesday. We have seen it exploited by QuakBot and other malware. Continue reading QakBot attacks with Windows zero-day (CVE-2024-30051)→

Exploits and vulnerabilities in Q1 2024

Posted on May 7, 2024 by Alexander Kolesnikov, Vitaly Morgunov

The report provides vulnerability and exploit statistics, key trends, and analysis of interesting vulnerabilities discovered in Q1 2024. Continue reading Exploits and vulnerabilities in Q1 2024→

A patched Windows attack surface is still exploitable

Posted on March 14, 2024 by Elsayed Elrefaei, Ashraf Refaat, Kaspersky GERT

In this report, we highlight the key points about a class of recently-patched elevation-of-privilege vulnerabilities affecting Microsoft Windows, and then focus on how to check if any of them have been exploited or if there have been any attempts to exploit them. Continue reading A patched Windows attack surface is still exploitable→

Top 10 web application vulnerabilities in 2021–2023

Posted on March 12, 2024 by Oxana Andreeva, Kaspersky Security Services

Our Security assessment team set up rankings that reflected our take on the most widespread and critical web application vulnerabilities as viewed through a prism of eight years’ experience. Continue reading Top 10 web application vulnerabilities in 2021–2023→

An educational robot security research

Posted on February 27, 2024 by Nikolay Frolov

Security research into an AI robot for kids revealed several vulnerabilities enabling a cybercriminal to take over device control and to video-chat with the kid. Continue reading An educational robot security research→

Operation Triangulation: The last (hardware) mystery

Posted on December 27, 2023 by Boris Larin

Recent iPhone models have additional hardware-based security protection for sensitive regions of the kernel memory. We discovered that to bypass this hardware-based security protection, the attackers used another hardware feature of Apple-designed SoCs. Continue reading Operation Triangulation: The last (hardware) mystery→

Windows CLFS and five exploits used by ransomware operators (Exploit #4 – CVE-2023-23376)

Posted on December 21, 2023 by Boris Larin

This is part five of our study about the Common Log File System (CLFS) and five vulnerabilities in this Windows OS component that have been used in ransomware attacks throughout the year. Continue reading Windows CLFS and five exploits used by ransomware operators (Exploit #4 – CVE-2023-23376)→