Zero Day | OSG: Bits, Bytes and Packets

Category Archives: Zero Day

Google plugs Chrome Zero-Day hole that is actively being exploited in the wild.

December 21, 2023 – 10:10 pm
Posted in Computers and Internet, Cyber security, Exploit Warning, Google, Patch Available, Vulnerability, Zero Day
Tagged Chrome, CVE-2023-7024, heap-based buffer overflow, thehackernews.com
Leave a Comment

This is said to be a heap buffer overflow flaw in the WebRTC framework according to Google.

A heap buffer overflow is a software code vulnerability that can be faulted or exploited by a bad actor, which can cause unintended consequences including a blue screen of death (BSOD, unauthorized access, or Denial of Service (DoS). The overflow generally occurs when the allotted storage capacity is exceeded by the volume of data.

More can be read at thehackernews.com here:

Apple patches Zero-Day vulnerabilities to iOS, macOS and Safari

December 1, 2023 – 12:07 pm
Posted in Apple, Attacks, Computers and Internet, Exploit Warning, Google, Patch Available, Smartphones, Vulnerability, Zero Day
Tagged CVE-2023-42916, CVE-2023-42917
Leave a Comment

https://thehackernews.com/2023/12/zero-day-alert-apple-rolls-out-ios.html

https://support.apple.com/en-us/HT201222

November, 2023 Patch Tuesday addresses 63 vulnerabilities; five of them are zero days.

November 17, 2023 – 1:21 pm
Posted in Computers and Internet, Cyber security, Exchange, Exploit Warning, Microsoft, Microsoft Patches, Office, Patch Available, Technology, Vulnerability, Windows 10, Windows 11, Windows Server, Zero Day
Tagged CVE-2023-36025, CVE-2023-36033, CVE-2023-36036, CVE-2023-36038, CVE-2023-36413, Microsoft, Patch Tuesday, thehackernews.com, Zero Day
Leave a Comment

https://thehackernews.com/2023/11/alert-microsoft-releases-patch-updates.html

Zero-Day in Progress MOVEit file transfer software allows SQL Injection attack to gain access, create files, and data exfiltration

June 2, 2023 – 9:21 am
Posted in Attacks, Breaking, CISA, Computers and Internet, Cyber security, Exploit Warning, HAck, IOCs available, Patch Available, Privacy Alert, Technology, Vulnerability, Vulnerability Management, Zero Day
Tagged Bleeping Computer, File Transfer, human.aspx, human2.aspx, huntress.com, MOVEit, MOVEit Transfer SaaS, MySQL, PII, Privilege escalation, Progress Software, RCE, SQL Injection, Unauthorized Access, Webshell, wwwroot folder, X-siLock-Comment
Leave a Comment

There are ~2,500 MOVEit servers available on the internet as of 6/1/2023. This is still developing. There are plenty of sources out there and it looks like these attacks started as resent as 5/27/2023.

https://www.huntress.com/blog/moveit-transfer-critical-vulnerability-rapid-response

https://www.bleepingcomputer.com/news/security/new-moveit-transfer-zero-day-mass-exploited-in-data-theft-attacks/

https://www.trustedsec.com/blog/critical-vulnerability-in-progress-moveit-transfer-technical-analysis-and-recommendations/