Questions tagged [infoleak]
This tag is for any class of exploits that leaks information relevant to further exploitation, such as stack cookies, kernel pointers, and memory layouts. It is not used for mere disclosure or loss of confidential data.
3
questions with no upvoted or accepted answers
3
votes
0
answers
196
views
Identifying kernel pointer infoleaks via static analysis
Leaking pointers from the kernel can be useful to an attacker. Normally, pointers are printed using a special identifier, %pK, which will sanitize them. However, there are times when a kernel pointer ...
2
votes
0
answers
184
views
Analyzing impact of leaked client_secret in Authorization Code Flow in Keycloak (CVE-2020-27838)
CVE-2020-27838 describes that Keycloak has an open endpoint where it's possible to obtain client_secret information, as shown in the example below:
/auth/realms/{realm}/clients-registrations/default/{...
1
vote
0
answers
504
views
What was the recent non-Google data breach (April 2024)?
I recently suffered an unprecedented number of hacking attacks. The following accounts of mine were accessed:
Patreon
Amazon (both accounts)
Paypal (3 unauthorized purchases, 2 recovered, one denied)
...