Blog
All blog posts from modzero.
-
DISCLOSURE
Hoot Hoot Pwn
May 31, 2022
As part of an analysis of video conference solutions for a customer, we examined the Meeting Owl.
-
DISCLOSURE
New security advisory regarding vulnerabilities in .Net
June 16, 2020
Today, we publish a new advisory for some vulnerabilities, that have been found by our team-mate Nils Ole Timm (@firzen14).
-
DISCLOSURE
How Netgear meshed(*) up WiFi for Business
May 18, 2020
(*) I'm really sorry for the pun line.
One day in December, I decided to actually build something. Something more or less useful. So, I paused breaking stuff (I really did) to create something that could help enhance the security-level of WiFi networks. I failed.
-
RESEARCH
Deserialization Attacks in .Net Games
April 17, 2020
Today many games are developed using .Net or a modified .Net Runtime like the Unity engine. This of course means that deserialization vulnerabilities in .Net can also occur in these games.
-
DISCLOSURE
More security brings more insecurity
February 19, 2020
modzero found a vulnerability in the Cisco Identity Services Engine (ISE) environment, which allows arbitrary participients of a network to inject arbitrary JavaScript payload right into the administrative webpage of the Cisco ISE administration interface.
⟵ Prev
2 of 2
All blog posts from modzero.
-
DISCLOSURE
Hoot Hoot Pwn
May 31, 2022
As part of an analysis of video conference solutions for a customer, we examined the Meeting Owl.
-
DISCLOSURE
New security advisory regarding vulnerabilities in .Net
June 16, 2020
Today, we publish a new advisory for some vulnerabilities, that have been found by our team-mate Nils Ole Timm (@firzen14).
-
DISCLOSURE
How Netgear meshed(*) up WiFi for Business
May 18, 2020
(*) I'm really sorry for the pun line. One day in December, I decided to actually build something. Something more or less useful. So, I paused breaking stuff (I really did) to create something that could help enhance the security-level of WiFi networks. I failed.
-
RESEARCH
Deserialization Attacks in .Net Games
April 17, 2020
Today many games are developed using .Net or a modified .Net Runtime like the Unity engine. This of course means that deserialization vulnerabilities in .Net can also occur in these games.
-
DISCLOSURE
More security brings more insecurity
February 19, 2020
modzero found a vulnerability in the Cisco Identity Services Engine (ISE) environment, which allows arbitrary participients of a network to inject arbitrary JavaScript payload right into the administrative webpage of the Cisco ISE administration interface.