ISC StormCast for Tuesday, July 16th 2019
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS ISC Handlers
4.9 • 754 Ratings
🗓️ 16 July 2019
⏱️ 7 minutes
🧾️ Download transcript
Summary
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hello, welcome to the Tuesday, July 16th, 2019 edition of the Sands and its Storm Center's |
| 0:07.0 | Stormcast. My name is Johannes Ulrich, in the time recording from Swindon, England. |
| 0:13.0 | Today we got yet another great tool by DDIH that he released. Isodump. Isodump, will help you analyze malicious iso files. |
| 0:24.4 | We're looking at a couple of them over the last few months in various diaries, |
| 0:29.4 | so Didier finally got around to create a tool to automate a good part of these tasks. |
| 0:46.3 | Now, after yesterday's patched by Atlassian for a GERA vulnerability, we today have more details regarding an unrelated vulnerability in the Adelausian crowd product. This was also a remote code execution vulnerability that was based on the PDK |
| 0:58.6 | install development plugin. In a blog post by Corbyn Leo, there are more details regarding |
| 1:06.2 | the exact bug being addressed in this update and how it could possibly be exploited, including |
| 1:13.6 | proof of concept code to exploit the vulnerability. |
| 1:18.6 | I think this is a good reminder to double check if all of your Adelation products are properly |
| 1:25.6 | patched. There were a number of vulnerabilities over the last few months |
| 1:29.5 | that were patched in these products and some of the older ones are certainly already being |
| 1:36.8 | exploited. And in case you are riding spiders using the scrappy framework, which is a quick Python framework that allows |
| 1:47.6 | you to automate the scraping of websites, well, better be aware of some issues with this particular |
| 1:55.5 | tool that I don't think have fully been addressed by the Scrapey team yet. |
| 2:01.0 | In a blog post by Claudio Salazar, he's going over some of these issues that really sort of |
| 2:07.1 | center around kind of two basic problems. One is where Scrapey may escape from the scope |
| 2:15.9 | it was provided with, and the second problem is that Scapey may be tricked as a result into reading file |
| 2:23.4 | URLs, which of course are local on the machine that runs scraping. |
| 2:29.5 | File URLs are in general a problem and really have sort of odd security implications because |
| 2:36.4 | they also allow web browsers to read local files which has been abused in the past. |
| 2:42.6 | In this case the browser well is the tool running on a system spidering website so |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.