A shorter episode, but some really cool vulns none-the-less, from mitigation bypassing on D-Link routers, to a new set of WiFi protocol design flaws.
[00:01:14] Security Vulnerability Detection Using Deep Learning Natural Language Processing
[00:08:12] Stealing secrets with Rust Macros proof-of-concept via VSCode
[00:13:21] [GitLab] RCE when removing metadata with ExifTool
[00:19:47] Terminal escape injection in AWS CloudShell
[00:23:54] Cross-browser tracking vulnerability in Tor, Safari, Chrome and Firefox
[00:34:27] Fei Protocol Flashloan Vulnerability Postmortem
[00:44:46] One-click reflected XSS on Instagram
[00:47:24] D-Link Vulnerability [CVE-2021-27342]
[00:51:52] Experimental Security Assessment of Mercedes-Benz Cars
[01:01:08] FragAttacks: Fragmentation & Aggregation Attacks
[01:10:57] Dell ‘dbutil_2_3.sys’ Kernel Exploit [CVE-2021-21551]
[01:11:45] googleprojectzero/Hyntrospect
[01:13:01] IDA Free w/ Cloud Decompiler Dropped
Watch the DAY[0] podcast live on Twitch (@dayzerosec) every Monday afternoon at 12:00pm PST (3:00pm EST)
Or the video archive on Youtube (@dayzerosec)
