ZecOps Research Team

Hidden demons? MailDemon Patch Analysis: iOS 13.4.5 Beta vs. iOS 13.5

Summary and TL;DR Further to Apple’s patch of the MailDemon vulnerability (see our blog here), ZecOps Research Team has analyzed and compared the MailDemon patches of iOS 13.4.5 beta and iOS 13.5.  Our analysis concluded  that the patches are different, and that iOS 13.4.5 beta patch was incomplete and could be still vulnerable under certain …

Hidden demons? MailDemon Patch Analysis: iOS 13.4.5 Beta vs. iOS 13.5 Read More »

You’ve Got (0-click) Mail!

Updates We published another writeup: https://blog.zecops.com/vulnerabilities/seeing-maildemons-technique-triggers-and-a-bounty/ The vulnerability affected even the first iPhone (aka iPhone 1 / iPhone 2G) on iOS 3.1.3. First in-the-wild trigger to this vulnerability happened on October 2010. As you can see in the new writeup, this vulnerability is exploitable and we encourage to release a patch as soon as possible. …

You’ve Got (0-click) Mail! Read More »

Exploiting SMBGhost (CVE-2020-0796) for a Local Privilege Escalation: Writeup + POC

Introduction CVE-2020-0796 is a bug in the compression mechanism of SMBv3.1.1, also known as “SMBGhost”. The bug affects Windows 10 versions 1903 and 1909, and it was announced and patched by Microsoft about three weeks ago. Once we heard about it, we skimmed over the details and created a quick POC (proof of concept) that …

Exploiting SMBGhost (CVE-2020-0796) for a Local Privilege Escalation: Writeup + POC Read More »

Detect iOS Attacks with ZecOps Gluon