all InfoSec news
251 - RCE'ing Mailspring and a .NET CRLF Injection [Bug Bounty Podcast]
March 19, 2024, 11 a.m. | DAY[0]
DAY[0] www.youtube.com
Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/251.html
[00:00:00] Introduction
[00:00:20] Making Desync attacks easy with TRACE
[00:16:01] Reply to calc: The Attack Chain to Compromise Mailspring
[00:35:29] $600 Simple MFA Bypass with GraphQL
[00:38:38] Microsoft .NET CRLF Injection Arbitrary File Write/Deletion Vulnerability [CVE-2023-36049]
Podcast episodes …
attack attack chain attacks bounty bug bug bounty bypass crlf injection easy ftp injection introduction making mfa podcast rce simple trace week xss
More from www.youtube.com / DAY[0]
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Senior Security Engineer
@ Core10 | Nashville, Tennessee, United States - Remote
Security Operations Engineer I
@ Jamf | US Remote
IT Security ISSO Specialist (15.10)
@ OCT Consulting, LLC | Washington, District of Columbia, United States
Compliance Officer
@ Aspire Software | Canada - Remote
Security Operations Center (SOC) - AVP
@ Paytm | Noida, Uttar Pradesh