If you ever wanted an Remote Code Execution exploit for Palo-Alto GlobalProtect (VPN solution presented to internet by design), somebody made one which spawns a webshell, used it to hack Uber.http://blog.orange.tw/2019/07/attacking-ssl-vpn-part-1-preauth-rce-on-palo-alto.html …
-
-
Unfortunately vendors have little incentive to push an internally discovered easy-to-fix "potential vuln" to the point of knowing whether it's actually exploitable, much less to a CVE.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.