Martijn Lammerts
My own digital place with a little of everything

New CVE-2018-8373 Exploit Spotted in the Wild

25 September 2018

By Elliot Cao On September 18, 2018, more than a month after we published a blog revealing the details of a use-after-free (UAF) vulnerability CVE-2018-8373 that affects the VBScript engine in newer Windows versions, we spotted another exploit, possibly in the wild, that uses the same vulnerability.  It’s important to note that this exploit doesn’t...

The post New CVE-2018-8373 Exploit Spotted in the Wild appeared first on .

Continue reading...

Evidence for the Security of PKCS #1 Digital Signatures

25 September 2018
This is interesting research: "On the Security of the PKCS#1 v1.5 Signature Scheme": Abstract: The RSA PKCS#1 v1.5 signature algorithm is the most widely used digital signature scheme in practice. Its two main strengths are its extreme simplicity, which makes it very easy to implement, and that verification of signatures is significantly faster than for DSA or ECDSA. Despite the...
Continue reading...