ZecOps Research Team

You’ve Got (0-click) Mail!

Updates We published another writeup: https://blog.zecops.com/vulnerabilities/seeing-maildemons-technique-triggers-and-a-bounty/ The vulnerability affected even the first iPhone (aka iPhone 1 / iPhone 2G) on iOS 3.1.3. First in-the-wild trigger to this vulnerability happened on October 2010. As you can see in the new writeup, this vulnerability is exploitable and we encourage to release a patch as soon as possible. …

You’ve Got (0-click) Mail! Read More »

Exploiting SMBGhost (CVE-2020-0796) for a Local Privilege Escalation: Writeup + POC

Introduction CVE-2020-0796 is a bug in the compression mechanism of SMBv3.1.1, also known as “SMBGhost”. The bug affects Windows 10 versions 1903 and 1909, and it was announced and patched by Microsoft about three weeks ago. Once we heard about it, we skimmed over the details and created a quick POC (proof of concept) that …

Exploiting SMBGhost (CVE-2020-0796) for a Local Privilege Escalation: Writeup + POC Read More »

Vulnerability Reproduction: CVE-2020-0796 POC

CVE-2020-0796 Introduction Microsoft recently announced a bug in the compression mechanism of SMBv3.1.1. The bug is also known as “SMBGhost”. This bug has serious implications in managed networks. Windows 10 versions 1903 and 1909 are affected. Lucas Georges shared an excellent write-up. Even though the full code wasn’t shared, the details were sufficient for a …

Vulnerability Reproduction: CVE-2020-0796 POC Read More »

Detect iOS Attacks with ZecOps Gluon