all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

201 - Bamboozling Bing and a Curl Gotcha

Add to bookmarks
April 4, 2023, 7:54 p.m. | zi

DAY[0] dayzerosec.com

Some audio issues this week, sorry for the ShareX sound. But we have a few interesting issues. A curl quirk that it might be useful to be aware of, Azure Pipelines vulnerability abusing attacker controlled logging. A look at a pretty classic Android/mobile bug, and a crazy auth misconfiguration (BingBang).

abusing android audio auth aware azure azure pipelines bing bingbang bounty-podcast bug curl logging misconfiguration mobile pipelines podcast sound vulnerability

Visit resource

More from dayzerosec.com / DAY[0]

252 - Bypassing KASLR and a FortiGate RCE 4 weeks ago | dayzerosec.com
aslr binary-podcast bypass bypassing +12
251 - RCE’ing Mailspring and a .NET CRLF Injection 4 weeks, 2 days ago | dayzerosec.com
attack bounty bounty-podcast bypass +9
250 - Future of Exploit Dev 1 month ago | dayzerosec.com
binary-podcast corruption dev development +12
249 - libXPC to Root and Digital Lockpicking 1 month ago | dayzerosec.com
android bounty-podcast bypass check +11
248 - Binary Ninja Free and K-LEAK 1 month, 1 week ago | dayzerosec.com
automated binary binary ninja binary-podcast +10
247 - Hacking Google AI and SAML 1 month, 1 week ago | dayzerosec.com
auth bounty-podcast bypass google +7
246 - Rust Memory Corruption??? 1 month, 3 weeks ago | dayzerosec.com
access binary-podcast code corruption +9
245 - A PHP and Joomla Bug and some DOM Clobbering 1 month, 3 weeks ago | dayzerosec.com
api bounty-podcast bug cache +15
244 - Linux Burns Down CVEs 1 month, 3 weeks ago | dayzerosec.com
binary-podcast cves down fuzzing +3

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Program Associate, Cyber Risk

@ Kroll | Toronto, ONT, Canada
View on infosec-jobs.com

Cybersecurity Operations Engineer 2

@ Humana | Remote US
View on infosec-jobs.com

Vice President - Lead Security Engineer (SECS04)

@ JPMorgan Chase & Co. | Columbus, OH, United States
View on infosec-jobs.com

Security Specialist

@ BGIS | Markham, ON, Canada
View on infosec-jobs.com
View more jobs