This post is available here: https://adepts.of0x.cc/exim-cve-2020-28018/
This is an analysis of a vulnerability discovered by Juan Sacco. The vulnerability has no given CVE ID.
The interesting fact here is that at the time of writing, the latest version for linux-based systems is the vulnerable version.Continue reading
CVE-2019-18634 is a vulnerability in sudo prior to version 1.8.26, but then discovered to be possible to exploit in versions after 1.8.26 until 1.8.30. This means the only way to be full patched is using sudo version 1.8.31.Continue reading
This will be a short technical analysis of CVE-2014-0160, or it’s well-known name OpenSSL Heartbleed.
Yes, it is a bit old… but the goal of this blog is not security advisory, it is to analyze past and present vulnerabilities for educational purposes, so let’s start…Continue reading