Previous Gnews Patch Nov 55 KB Articles with
Previous Gnews
Patch Nov – 55 KB Articles with 195 unique downloads • • • Internet Explorer Microsoft Edge Microsoft Windows Microsoft Office and Microsoft Office Services and Web Apps ASP. NET Core and. NET Core Chakra Core Tuesday
Holes / Patches • Adobe – – – – – APSB 17 -33 Flash Player (5 CVE) APSB 17 -34 Photoshop (2 CVE) APSB 17 -35 Connect (5 CVE) APSB 17 -36 Acrobat Reader (62 CVE) APSB 17 -37 DNG Converter (1 CVE) APSB 17 -38 Design (1 CVE) APSB 17 -39 Digital Editions (6 CVE) APSB 17 -40 Shockwave Player (1 CVE) APSB 17 -41 Experience Manager (1 CVE) • VMWare – VMSA-2017 -0016 / Air. Watch Console and Launcher for Android (2 CVE) – VMSA-2017 -0017 / v. Center Server LDAP DOS, SSRF and CRLF injection (3 CVE) • Apple – watch. OS 4. 1 – i. OS 11. 1 – mac. OS 10. 13. 1 / Security Update 2017001 Sierra / Security Update 2017 -004 El Capitan – tv. OS 11. 1 – Safari 11. 0. 1 – i. Tunes 12. 7. 1 for Windows – i. Cloud for Win 7. 1 – i. OS 11. 1. 1
Holes / Patches • MS Office bypass feature • flash 0 -day • 250 oracle • Critical PS • ROCA TPM flaw • Sky. Lake MPX Flaw (memory protection extension) • Splunk Privilege escalation • Oracle identity manager 0 -day • cisco bgp • S 3 update
• Hacking WPA 2 is toast – – https: //www. krackattacks. com/ Cisco 29 products • Locky leveraging no macros • BLU phones • Locky Morphs again • ML inception • Fancy. Bear party invite • DUHK FIPS • why dating apps suck • MQX
• hyatt popped • Win 10 breaks dutch law • googleplay bug bounty • MS bakes in anti-game cheating • cvs bidding on aetna? • bad rabbit • epson ink tricks • PCI EMV 3 D standards • APNIC dumps password hashes • Slack SAML bug • Secure drop bug • google to drop public key pinngin in chrome Corp
• Protecting data at teh border act • Austrailia and f 35 leak • ADministration to force DMARC and STARTTLS • AI folks want to end govt blackboxes • Canada's "nsa" drops open-source tool • USA Rights Act (section 702 oversight) • Florida upholds pre-1972 recordings law • google vs equustek • TX national guard dirt boxes Corp
EU-US privacy shield report https: //www. huntonprivacyblog. com/2017/10/18/eu-commission-releases-report-on-first-annual-review-of-the-eu-u-sprivacy-shield-framework/ More unredacted JFK docs https: //www. archives. gov/research/jfk/2017 -release https: //theintercept. com/2017/10/25/jfk-assassination-files-nsa-cuba/ highly secure win 10 https: //docs. microsoft. com/en-us/windows-hardware/design/device-experiences/oem-highly-secure Papers
Fahrenheit 451 MS / Google jibjab Amazon Key Fed try to bust guy for possession of data obtained via foia bjork, cryptocurrency giveaway bulbasaur daily stormer now hosted out of anguilla WTF
SQLiv Python SQLi dorking Tools
DHA @Dallas_Hackers ( 1 st Wednesday / Family Karaoke, Dallas ) TX 2600 @dallas 2600 ( 1 st Fri / Wild Turkey 35&Walnut. Hill, Dallas ) The Lab. MS @The. Lab_ms ( 2 nd Saturday + random events / The. Lab. ms, Plano ) ISSA Fort Worth @ISSAFort. Worth ( 2 nd Tuesday / location varies ) Hack Ft Worth @Hack_Ft. W ( 3 rd-ish Tuesday / Buffalo West, Fort Worth) OWASP Dallas @OWASPDallas ( 3 rd Tuesday / location varies ) Crypto Party DFW @Crypto. Party. DFW ( 3 rd Thursday / The. Lab. ms, Plano ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas Maker. Space @dallasmakers ( Random events / Carrollton ) Where
All images scavenged without permission
- Slides: 12