Author Topic: Technical  (Read 856485 times)

0 Members and 1 Guest are viewing this topic.

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2940 on: April 23, 2020, 08:31:43 AM »
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2941 on: April 24, 2020, 10:53:22 AM »
"I'll ask your body": SMBGhost pre-auth RCE abusing Direct Memory Access structs
https://ricercasecurity.blogspot.com/2020/04/ill-ask-your-body-smbghost-pre-auth-rce.html
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2942 on: April 25, 2020, 07:15:12 AM »
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2943 on: April 26, 2020, 07:50:43 AM »
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2944 on: April 27, 2020, 06:44:37 AM »
You Won't Believe what this One Line Change Did to the Chrome Sandbox
https://googleprojectzero.blogspot.com/2020/04/you-wont-believe-what-this-one-line.html
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 83301
  • No support PMs thanks
Re: Technical
« Reply #2945 on: April 27, 2020, 11:07:45 AM »
You Won't Believe what this One Line Change Did to the Chrome Sandbox
https://googleprojectzero.blogspot.com/2020/04/you-wont-believe-what-this-one-line.html

From reading this article it would appear MS has already implemented a fix:
Quote from: Extract from article
This vulnerability was fixed in April 2020 as CVE-2020-0981.
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0981
WinXP ProSP3/ Core2Duo E8300/ 4GB Ram/ avast! free 18.5.2342/ Firefox ESR, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ DropMyRights/ WinPatrol+/ Drive Image 7.1/ SnagIt 10.0/ avast! mobile security
Windows 10 Home 1909 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 20.5.2415 (build 20.5.5410.561) UI-1.0.532/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2946 on: April 27, 2020, 11:47:55 AM »
You Won't Believe what this One Line Change Did to the Chrome Sandbox
https://googleprojectzero.blogspot.com/2020/04/you-wont-believe-what-this-one-line.html
From reading this article it would appear MS has already implemented a fix:
Quote from: Extract from article
This vulnerability was fixed in April 2020 as CVE-2020-0981.
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0981
Yes, but unfortunately the basic problem persists...

The good news is Forshaw alerted Microsoft to the problem and the company issued a patch (CVE-2020-0981) to fix it. That said, the fundamental flaw Forshaw identified remains: the security of Google Chrome on Windows 10 depends on Microsoft and that cannot be changed. It's important to point out that other Chromium-based browsers suffer the same risk (Opera, Brave, Microsoft's new Edge browser), and that means you may tempted to quit Windows 10 if you are more wedded to your browser than your operating system.
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 43695
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Technical
« Reply #2947 on: April 27, 2020, 02:07:42 PM »
You Won't Believe what this One Line Change Did to the Chrome Sandbox
https://googleprojectzero.blogspot.com/2020/04/you-wont-believe-what-this-one-line.html
From reading this article it would appear MS has already implemented a fix:
Quote from: Extract from article
This vulnerability was fixed in April 2020 as CVE-2020-0981.
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0981
Yes, but unfortunately the basic problem persists...

The good news is Forshaw alerted Microsoft to the problem and the company issued a patch (CVE-2020-0981) to fix it. That said, the fundamental flaw Forshaw identified remains: the security of Google Chrome on Windows 10 depends on Microsoft and that cannot be changed. It's important to point out that other Chromium-based browsers suffer the same risk (Opera, Brave, Microsoft's new Edge browser), and that means you may tempted to quit Windows 10 if you are more wedded to your browser than your operating system.
This also doesn't mention the fact that Microsoft is very busy changing the whole way Windows will be updated in the future.
Another headline sensationalized to grab attention. Unfortunately, most people never read anything but the  misleading headlines.
I wish that at least on this forum, we do a better job than just forward those misleading headlines.
It's better not to post than to pass along things that give the wrong or only partial information. IMHO



Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.3.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2948 on: April 27, 2020, 02:19:15 PM »
Another headline sensationalized to grab attention. Unfortunately, most people never read anything but the  misleading headlines.
I wish that at least on this forum, we do a better job than just forward those misleading headlines.
It's better not to post than to pass along things that give the wrong or only partial information. IMHO
Sorry Bob, but did you read (and understand) the Project Zero article..!?
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 43695
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Technical
« Reply #2949 on: April 27, 2020, 02:40:40 PM »
Another headline sensationalized to grab attention. Unfortunately, most people never read anything but the  misleading headlines.
I wish that at least on this forum, we do a better job than just forward those misleading headlines.
It's better not to post than to pass along things that give the wrong or only partial information. IMHO
Sorry Bob, but did you read (and understand) the Project Zero article..!?
Yes Asyn, I don't just read headlines. :)
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.3.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2950 on: April 27, 2020, 02:50:17 PM »
Another headline sensationalized to grab attention. Unfortunately, most people never read anything but the  misleading headlines.
I wish that at least on this forum, we do a better job than just forward those misleading headlines.
It's better not to post than to pass along things that give the wrong or only partial information. IMHO
Sorry Bob, but did you read (and understand) the Project Zero article..!?
Yes Asyn, I don't just read headlines. :)
Well, if so, you should know that your comment "headline sensationalized to grab attention" is totally wrong.
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 43695
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Technical
« Reply #2951 on: April 27, 2020, 03:18:24 PM »
Another headline sensationalized to grab attention. Unfortunately, most people never read anything but the  misleading headlines.
I wish that at least on this forum, we do a better job than just forward those misleading headlines.
It's better not to post than to pass along things that give the wrong or only partial information. IMHO
Sorry Bob, but did you read (and understand) the Project Zero article..!?
Yes Asyn, I don't just read headlines. :)
You're entitled to your opinion.
Well, if so, you should know that your comment "headline sensationalized to grab attention" is totally wrong.
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.3.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 83301
  • No support PMs thanks
Re: Technical
« Reply #2952 on: April 27, 2020, 04:06:46 PM »
You Won't Believe what this One Line Change Did to the Chrome Sandbox
https://googleprojectzero.blogspot.com/2020/04/you-wont-believe-what-this-one-line.html
From reading this article it would appear MS has already implemented a fix:
Quote from: Extract from article
This vulnerability was fixed in April 2020 as CVE-2020-0981.
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0981
Yes, but unfortunately the basic problem persists...

The good news is Forshaw alerted Microsoft to the problem and the company issued a patch (CVE-2020-0981) to fix it. That said, the fundamental flaw Forshaw identified remains: the security of Google Chrome on Windows 10 depends on Microsoft and that cannot be changed. It's important to point out that other Chromium-based browsers suffer the same risk (Opera, Brave, Microsoft's new Edge browser), and that means you may tempted to quit Windows 10 if you are more wedded to your browser than your operating system.

Well that for me just confirms what I said, how can the problem still exist if the CVE-2020-0981 (that they have mentioned twice now) was released in the April 2020 updates. 

MS issued a fix(CVE-2020-0981) and your additional comments just conforms this (Forshaw reported this and confirms the same (CVE-2020-0981) fix. This is just sort of recycling old news, so that exploit shouldn't be possible if said browser sandboxes that use the win10 sandbox token/s. 

As for their comment "if you are tempted to quit windows10," what the hell are they suggesting as a replacement, nothing it would seem.
WinXP ProSP3/ Core2Duo E8300/ 4GB Ram/ avast! free 18.5.2342/ Firefox ESR, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ DropMyRights/ WinPatrol+/ Drive Image 7.1/ SnagIt 10.0/ avast! mobile security
Windows 10 Home 1909 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 20.5.2415 (build 20.5.5410.561) UI-1.0.532/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2953 on: April 28, 2020, 06:54:13 AM »
As for their comment "if you are tempted to quit windows10," what the hell are they suggesting as a replacement, nothing it would seem.
There's also macOS/Linux/Android/iOS or even Win7/8/8.1 (if you prefer MS).
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 65372
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2954 on: April 28, 2020, 06:56:04 AM »
Win 8.1 [x64] - Avast PremSec 20.5.2415.BUC [UI.532] - CC 5.68 - EEK - FF ESR 68.10 [NS/AOS/uBO/PB] - TB 68.10 - SB/CP/SL/DU.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0