Netanel Ben Simon

Do you like reading books? Then you’ll love hacking Amazon’s Kindle. https://t.co/7MHrGFqWB9 Read all the technical details here: https://t.co/2zB0mQw3hI

[CPR-Zero] CVE-2021-31179 (Outlook, Office): Improper parsing of TLV records leading to Use-After-Free and Heap Corruption in graph.exe https://t.co/AvnUHn0L37

[CPR-Zero] CVE-2021-31178 (Outlook, Office): Integer Underflow leading to Stack-based Out of Bound Read in graph.exe https://t.co/tgUWlDCWyu

[CPR-Zero] CVE-2021-31174 (Outlook, Office): Stack-based Out of Bound Read in graph's data stream parsing code in graph.exe https://t.co/xHr7q7zAy4

[CPR-Zero] CVE-2021-31939 (Outlook, Office): Use-After-Free in graph data parsing code in graph.exe https://t.co/AzlW9uAxXo

Woohoo! https://t.co/73TA5AzhlQ "Another great feature of Jackalope is that it is easily customizable and hackable. The process of adding a custom mutator to the fuzzer was pretty straight-forward and increased our fuzzing effectiveness with very little development cost."

Our researchers found that CVE-2017-0005, a 0-Day attributed to the Chinese APT31, is a replica of an Equation Group 0-Day, that was caught and repurposed by APT31 during 2014, 3 years before the Shadow Brokers leak. Read the complete story on our blog. https://t.co/sz3bAxrbYJ

Gamers Beware We recently turned our eyes to a major networking library used by a sizeable chunk of online gaming - Valve’s "Steam Sockets". Here is our report on the library, and the vulnerabilities we found in it. https://t.co/gnT6Ho3BkQ

[CPR-Zero] CVE-2020-1310 (Windows 8.1/10 Kernel): Use-After-Free in win32k.sys triggered from Desktop Window Manager https://t.co/obT9tkAclY

[CPR-Zero] CVE-2020-1247 (Windows 10 Kernel): Out-Of-Bounds Read\Write in the StrechBlt function in win32kfull.sys https://t.co/7ipnr8eNlp

We discovered a 17-year-old vulnerability in all of Windows DNS Servers. SIGRed (CVE-2020-1350) is a wormable, critical vulnerability that can be used to achieve full Domain Administrator privileges. https://t.co/giebs7WIhp