Security Alerts & News
by Tymoteusz A. Góral

History
#2066 0patching a 0day: Windows gdi32.dll memory disclosure (CVE-2017-0038)
As you've probably noticed, the last Patch Tuesday didn't make it. Consequently a number of 0-days are getting published, with CVE-2017-0038 being the first one on the list. But don't worry, every cloud has a silver lining. I had some free time last week to look into the matter and as a result I can give you the very first 0patch for a 0-day.

CVE-2017-0038 is a bug in EMF image format parsing logic that does not adequately check image dimensions specified in the image file being parsed against the amount of pixels provided by that file. If image dimensions are large enough the parser is tricked into reading memory contents beyond the memory-mapped EMF file being parsed. An attacker could use this vulnerability to steal sensitive data that an application holds in memory or as an aid in other exploits when ASLR needs to be defeated.
Read more
#2071 Researcher breaks reCAPTCHA using Google's speech recognition API
#2070 Free decryption tools now available for Dharma ransomware
#2069 50 Google engineers volunteered to patch thousands of Java open source projects
#2068 Researchers uncover PowerShell Trojan that uses DNS queries to get its orders
#2067 Hacking Slack using postMessage and WebSocket-reconnect to steal your precious token
#2066 0patching a 0day: Windows gdi32.dll memory disclosure (CVE-2017-0038)
#2065 Mike Pence used an AOL e-mail account for state business and it got hacked
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12