Really great breakdown of exploitation of cache poisoning.
Further reminder that HTTP is the weakest link. Exploitation example of HTTP Request Smuggling.
Extraodinarily hard to exploit but really fascinating to look at RCE bug in the Android Bluetooth stack.
https://insinuator.net/2020/04/cve-2020-0022-an-android-8-0-9-0-bluetooth-zero-click-rce-bluefrag/
A lot of people have put their online training up for free (for a limited time) like PluralSight. Here’s another one, by Kontra. I haven’t done it yet but it comes highly recommended.
https://blogs.akamai.com/sitr/2020/04/a-brief-history-of-a-rootable-docker-image.html
That’s it for the news of the week. Everyone stay safe and healthy!
S