Author name: SSD Secure Disclosure technical team

SSD Advisory – MacOS Mozilla Firefox Download Protections were bypassed by .atloc / .ftploc Files

Summary A vulnerability in Mozilla Firefox has been found to not show an executable file warning when downloading .atloc and .ftploc files, which can run commands on a user’s computer. Credit Dohyun Lee, working for SSD Labs Korea. CVE CVE-2022-46875 Vendor Response The vendor has released patches available at: https://www.mozilla.org/en-US/security/advisories/mfsa2022-51/  Technical Analysis A vulnerability in …

SSD Advisory – MacOS Mozilla Firefox Download Protections were bypassed by .atloc / .ftploc Files Read More »

Win32k User-Mode Printer Drivers StartDoc UAF

Summary A vulnerability in the UMPD (User-Mode Printer Drivers) allows local users to trigger a use-after-free vulnerability. The vulnerability works from Windows 8 and above, and is fairly easy to exploit on older Windows machines. Credit An independent security researcher working SSD Secure Disclosure. CVE  CVE-2022-41050 Vendor Response The vendor has released patches available at: …

Win32k User-Mode Printer Drivers StartDoc UAF Read More »

pfSense post-auth RCE demo

SSD Advisory – pfSense Post Auth RCE

TL;DR A vulnerability in pfSense allows authenticated users to cause the product to execute arbitrary code – this in turn would allow an attacker to compromise the machine on which the pfSense is installed. Vulnerability Summary Due to the way pfSense, an open-sourced firewall, manages names of rules – an authenticated attacker that is able …

SSD Advisory – pfSense Post Auth RCE Read More »

?

Get in touch