Snort - vrt-blog.snort.org - VRT
General Information:
Latest News:
Bytecode - Covering the Android Vulnerabilities Master Key and Extra Field 22 Aug 2013 | 11:11 pm
This post will walk through our coverage for the Master Key and Extra Field vulnerabilities. Both vulnerabilities allow arbitrary files to be added to signed APKs without breaking the digital signatur...
Microsoft Update Tuesday August 2013: More font issues, some interesting DoSes 13 Aug 2013 | 10:26 pm
It's a pretty standard month for Update Tuesday this time around. There's a total of 8 bulletins, covering 23 CVE issues. This bulletin addresses the final 2 issues reported during CanSecWest's Pwn2Ow...
Android Extra Field Vulnerability Spotted in the Wild 30 Jul 2013 | 07:47 pm
It has been 20 days since the Extra Field vulnerability (also known as Chinese Master Keys) was first reported (translated link) by the Android Security Squad. It has now been spotted in the wild. The...
Androrat - Android Remote Access Tool 16 Jul 2013 | 06:43 pm
Androrat Androrat is an appropriately named remote access tool (or RAT) for Android. In case you're unfamiliar, RATs provide backdoor functionality to an operator, giving access to your system and pri...
Microsoft Update Tuesday: July 2013: an issue of TrueType fonts 10 Jul 2013 | 07:20 am
This month's Update Tuesday looks pretty interesting. As usual, there's quite a few CVEs covered and most of them are once again in IE: there's a total of 7 bulletins, covering 34 CVE issues. However,...
Microsoft Update Tuesday, June 2013: mostly about Internet Explorer 11 Jun 2013 | 10:36 pm
Another month brings us another Update Tuesday. This month is pretty light with respect to the updates that Microsoft is releasing. They're releasing a total of 5 bulletins, covering 23 CVEs. First a...
Java Web Start or as it should be called "Sure go ahead and run what you like" 20 May 2013 | 11:03 pm
Late last month, Immunity published a blog post concerning a new way to escape the Java security warnings using a novel and simple method, by using the convenient Java Web Start framework. The Immunit...
Microsoft Update Tuesday: Update for IE8 0-day and More 15 May 2013 | 12:13 am
Today is Update Tuesday and Microsoft is releasing updates for 33 CVEs across 10 bulletins. We'll be discussing some of the highlights here. One of the most important updates (MS13-038) that is being...
Changing the IMEI, Provider, Model, and Phone Number in the Android emulator 23 Apr 2013 | 10:22 pm
Pincer I was having a look at the Pincer family of Android malware and came across some code designed to hinder analysis. From the decompilation of com/security/cert/a/a/c.class: String str1 = com....
25 years of vulnerabilities: 1988-2012, the report 5 Mar 2013 | 01:37 am
We here at the VRT are all about backing up opinions with facts, and there are a lot of opinions about the nature of the vulnerability landscape out there. That in mind, we decided recently to study t...