协议安全 漏洞收集

TCP/IP

• Exploiting a remote heap overflow with a custom TCP stack
• NUCLEUS:13 - New Critical Vulnerabilities Found on Nucleus TCP/IP Stack
• NUMBER:JACK - Forescout Research Labs Finds Nine ISN Generation Vulnerabilities Affecting TCP/IP Stacks
• INFRA:HALT - 14 new vulnerabilities affecting closed source TCP/IP stack NicheStack
• tsuNAME:Vulnerability that can be used to DDoS DNS
• NAME:WREACK nine new vulnerabilities affecting four popular TCP/IP stacks
• AMNESIA:33 open source TCP/IP stacks (uIP, FNET, picoTCP and Nut/Net) White Paper
• TLS Raccoon Attack
• Ripple20: 19 Zero-Day Vulnerabilities Amplified by the Supply Chain
• CallStranger: Data Exfiltration & Reflected Amplified TCP DDOS & Port Scan via UPnP SUBSCRIBE Callback 分析
• URGENT/11: 11 Zero Day Vulnerabilities Impacting VxWorks
• DNSpooq: 7 vulnerabilities in Dnsmasq
• FreeRTOS TCP/IP Stack Vulnerabilities

Blutooth

• CVE Lists: bluetooth
• Blacktooth: Blacktooth: Breaking through the Defense of Bluetooth in Silence
• BadBluetooth: Breaking Android Security Mechanisms via Malicious Bluetooth Peripherals Video
• DirtyTooth-RaspberryPi: Exploit the hack for IOS 11.1.2 and earlier to collect leaked information. More Whitepaper
• BLE-Security-Attack-Defence: The dangers of BLE implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.
• BLURtooth: BLUR attacks
• BRAKTOOTH: Causing Havoc on Bluetooth Link Manager
• BIAS: Bluetooth Impersonation AttackS
• SweynTooth: Unleashing Mayhem over Bluetooth Low Energy
• Key Negotiation of Bluetooth Attack: Breaking Bluetooth Security More
• BlueBorne POC
• BLEEDINGBIT: THE HIDDEN ATTACK SURFACE WITHIN BLE CHIPS
• BadBluetooth: Breaking Android Security Mechanisms via Malicious Bluetooth Peripherals
• Stealthily Access Your Android Phones: Bypass the Bluetooth Authentication Video

WiFi

• FragAttacks (fragmentation and aggregation attacks)
• Broadcom Wi-Fi KR00K Proof Of Concept
• KR00K - CVE-2019-15126
• Key Reinstallation Attacks
• Over The Air: Exploiting Broadcom’s Wi-Fi Stack

UWB

• Ghost Peak: Practical Distance Reduction Attacks Against HRP UWB Ranging

ICS

• The OpENer EtherNet/IP stack Multiple Vulnerabilities

CHIPS

• Major Vulnerabilities discovered and patched in Realtek RTL8195A Wi-Fi Module