Tutorials - Page 6 of 18 - Sick Codes - Security Research, Hardware & Software Hacking, Consulting, Linux, IoT, Cloud, Embedded, Arch, Tweaks & Tips!

TeamworkCloud CVE-2020-25507 Installation

CVE-2020-25507 – NoMagic (Dassault Systèmes 3DS) Teamwork Cloud 18.0-19.0 – Incorrect Permissions Assignment for a Critical Resource Allows Arbitrary Code Execution and Local Privilege Escalation to Root.

December 23, 2020 - Updated on December 31, 2020

Title NoMagic (Dassault Systèmes) Teamwork Cloud 18.0-19.0 - Incorrect Permissions Assignment for a Critical Resource Allows Arbitrary Code Execution and ...

testdisk recover lost files linux server

How to Forensically Recover/Copy/Image a Disk (Including Testdisk/PhotoRec Deleted File Recovery [lost+found]), and How To Defend Your Disks.

by Sick Codes

December 22, 2020 - Updated on December 26, 2020

0

The following tutorial will illustrate how to take a block for block, sector for sector, bit for bit copy of ...

Public Private Key PGP Message in GPG On Linux

How To Make a PGP Keypair using GPG and Communicate In Absolute Privacy (Linux/Mac) Public & Private Keys + Encrypt & Decrypt Messages

by Sick Codes

December 17, 2020

0

A PGP key is an encryption key with two main parts: Private Key Public Key The owner of the key ...

CVE-2020-28360 – private-ip npm package – Incorrect Regular Expression – Insufficient RegEx in private-ip npm package v1.0.5 and below insufficiently filters reserved IP ranges resulting in indeterminate SSRF.

by Sick Codes

November 23, 2020 - Updated on December 31, 2020

0

CVE ID CVE-2020-28360 CVSS Score 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Internal ID SICK-2020-022 Vendor private-ip Project Product private-ip Product Versions: 1.0.5 and below ...

Extraordinary Vulnerabilities Discovered in TCL Android TVs, Now World’s 3rd Largest TV Manufacturer.

by Sick Codes

November 9, 2020 - Updated on April 3, 2021

14

The following piece is the culmination of a three-month long investigation into Smart TVs running Android. Having lived through this ...

CVE-2020-28055 – TCL Android Smart TV (All) – Incorrect Permission Assignment for Critical Vendor Resources – TCL Android TV Vendor Configuration & Upgrade Folders World Writable to Local Attacker

by Sick Codes

November 9, 2020 - Updated on December 31, 2020

1

Title TCL Android Smart TV (All) - Incorrect Permission Assignment for Critical Vendor Resources - TCL Android TV Vendor Configuration ...

TCL Smart TV Vulnerability Browse Filesystem

CVE-2020-27403 – TCL Android Smart TV (All) – Exposure of Information Through Directory Listing – TCL Android TV Filesystem Browsable to Unauthenticated Attackers Over the Adjacent Network on Port 7989

by Sick Codes

November 9, 2020 - Updated on December 31, 2020

3

Title TCL Android Smart TV (All) - Exposure of Information Through Directory Listing - TCL Android TV Filesystem Browsable to ...

CVE-2020-8276 – Exposure of Sensitive Information to an Unauthorized Actor – Brave Browser Potentially Logs The Last Time A Tor Window Was Used.

by Sick Codes

November 5, 2020 - Updated on November 24, 2020

0

Title Exposure of Sensitive Information to an Unauthorized Actor - Brave Browser Potentially Logs The Last Time A Tor Window ...

How to Install barebones PHPMyAdmin Locally on Linux with just PHP and mariadb/mysql

by Sick Codes

October 12, 2020

0

Install mariadb or mysql and php # ubuntu debian pop sudo apt install mariadb-client mariadb-server php # arch manjaro sudo ...

SICK-2020-004 Hindotech HK1 TV Box - Root Privilege Escalation - Improper Access Control

CVE-2020-27402 – Hindotech HK1 TV Box – Root Privilege Escalation

by Sick Codes

October 12, 2020 - Updated on November 24, 2020

0

CVE-2020-27402 Hindotech HK1 TV Box - Root Privilege Escalation - Improper Access Control CVE ID CVE-2020-27402 CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H ...

CVE-2020-25507 – NoMagic (Dassault Systèmes 3DS) Teamwork Cloud 18.0-19.0 – Incorrect Permissions Assignment for a Critical Resource Allows Arbitrary Code Execution and Local Privilege Escalation to Root.

How to Forensically Recover/Copy/Image a Disk (Including Testdisk/PhotoRec Deleted File Recovery [lost+found]), and How To Defend Your Disks.

How To Make a PGP Keypair using GPG and Communicate In Absolute Privacy (Linux/Mac) Public & Private Keys + Encrypt & Decrypt Messages

CVE-2020-28360 – private-ip npm package – Incorrect Regular Expression – Insufficient RegEx in private-ip npm package v1.0.5 and below insufficiently filters reserved IP ranges resulting in indeterminate SSRF.

Extraordinary Vulnerabilities Discovered in TCL Android TVs, Now World’s 3rd Largest TV Manufacturer.

CVE-2020-28055 – TCL Android Smart TV (All) – Incorrect Permission Assignment for Critical Vendor Resources – TCL Android TV Vendor Configuration & Upgrade Folders World Writable to Local Attacker

CVE-2020-27403 – TCL Android Smart TV (All) – Exposure of Information Through Directory Listing – TCL Android TV Filesystem Browsable to Unauthenticated Attackers Over the Adjacent Network on Port 7989

CVE-2020-8276 – Exposure of Sensitive Information to an Unauthorized Actor – Brave Browser Potentially Logs The Last Time A Tor Window Was Used.

How to Install barebones PHPMyAdmin Locally on Linux with just PHP and mariadb/mysql

CVE-2020-27402 – Hindotech HK1 TV Box – Root Privilege Escalation

@sickcodes

@sickcodes

@sickcodes

Discord Server

sickcodes.slack.com

t.me/sickcodeschat

./contact_form