Unsafe memory handling can lead to a whole host of bugs...and security vulnerabilities! While good CI/CD can mitigate some of that, it isn't fireproof. It may be time to think about adopting a memory safe programming language.
https://t.co/gTl75jhUoQ
#developers#memorysafety
I've been reverse engineering the xz backdoor this weekend and have documented the payload format and written a proof-of-concept exploit for the RCE. The payloads are signed with an ED448 key, so I patched my own key into the backdoor for testing. :-)
https://t.co/CvKo3xPRkP
Reverse engineering by @amlweems reveals 3 flaws that allows attackers to use the backdoor without the private key, using only a captured message signed for the target host:
1. Lack of replay protection
2. Symmetric encryption with a hardcoded key,
3. Partially signed commands
So, the @RIGOL_Tech DP832 had the issue that when you turn it on it had a significant voltage spike (with enough power to drive a motor).
Unfortunately it looks like this was not fixed on the DP932, the successor of the DP832 😐