This Equation Group leak looks legit, fun (or someone had a *lot* of free time to fake it). C&C tool:pic.twitter.com/AU7KX57EWl
EPICBANANA exploits a line editing bug in Cisco PIX/ASA boxes. It's 2016 and we still have getline buffer overflows?pic.twitter.com/n3pNdt58F5
-
-
Is this an 0day or was it discovered/patched since the exploit was written? IOW does this look like an active payload or obsolete?
-
Not sure, but it might be a 0day? Not seeing a CVE for it, though I don't have an ASA to check if it still works.
- Show replies
New conversation -
-
-
as long as we have getline…
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
EXTRABACON exploits a Cisco ASA SNMP bug, perhaps in the cufwUrlfServerStatus OID or just general SNMP parsing.pic.twitter.com/Bk2RpUQS2Z
-
Note how comments and docstrings in the Equation Group leak seem to have been wiped, suggesting this is a package deployed to a C&C server.
- Show replies
New conversation -
-
-
It seems the latest supported firmware version is 8.3(2), released in 2010. But yeah, Cisco.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
better select products created using
@rustlang -
Guess what I'm going to be using for the security related thing I'm designing... :-)
- Show replies
New conversation -
-
-
code untouched since <enter 20th century date here>
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.