Pwn2Own, Parallels Desktop, and an AppleAVD Bug [Binary Exploitation Podcast]


Just a couple vulnerabilities to talk about this week, but some interesting things to talk about in them. We also have some discussion about this year's pwn2own results and a couple things that caught out attention. Links and vulnerability summaries for this episode are available at: https://ift.tt/QCXIKmN [00:00:00] Introduction [00:01:02] Spot the Vuln - NoSQL, No Problem [00:02:46] Pwn2Own Vancouver 2022 - The Results [00:16:14] CVE-2022-22675: AppleAVD Overflow in AVC_RBSP::parseHRD [00:23:16] Exploiting an Unbounded memcpy in Parallels Desktop The DAY[0] Podcast episodes are streamed live on Twitch twice a week: - Mondays at 3:00pm Eastern (Boston) we focus on web and more bug bounty style vulnerabilities - Tuesdays at 7:00pm Eastern (Boston) we focus on lower-level vulnerabilities and exploits. The audio-only version of the podcast is available on: -- Apple Podcasts: https://ift.tt/pjq7TdB -- Spotify: https://ift.tt/hU3lgtN -- Google Podcasts: https://ift.tt/SeTMbHv -- Other audio platforms can be found at https://ift.tt/Wk7UxNp You can also join our discord: https://ift.tt/VarD6JQ Or follow us on Twitter (@dayzerosec) to know when new releases are coming. #ExploitDevelopment #BinaryExploitation #InfoSec #Podcast

For more hacking info and tutorials visit: https://ift.tt/ICci29Q

Hello and welcome to the temple of cybersecurity. Now you are watching Pwn2Own, Parallels Desktop, and an AppleAVD Bug [Binary Exploitation Podcast] published at May 25, 2022 at 07:00PM. If you are looking for tutorials and all the news about the world of hacking and computer security, you have come to the right place. We invite you to subscribe to our newsletter in the box at the top and to follow us on our social networks:

NFT store: https://mintable.app/u/cha0smagick
Twitter: https://twitter.com/freakbizarro
Facebook: https://web.facebook.com/sectempleblogspotcom/
Discord: https://discord.gg/5SmaP39rdM



Ignore tags:
#hacking,#infosec,#tutorial,#bugbounty,#threat,#hunting,#pentest,#hacked,#ethical,#hacker,#cyber,#learn,#security,#computer,#pc,#news

Comments