I have wrote PoC half a year ago, because i needed to try it on my Chinese router, and it still works on freshly
purchased pineapple devices. (hello from Defcon 😉 )
And guys, it’s not a talk for the defcon, especially if you have done a botnet based on that shit… 😉
See ya tomorrow at WiFi village…

POC is below:

#!/usr/bin/env python

from random import choice
from urllib import urlencode
from httplib import HTTPConnection

settings = {…

Fedora

Fedora EPEL 6 Security Update: golang-1.4.2-3.el6

August 8, 2015 007admin

Resolved Bugs
1250353 – golang: HTTP request smuggling in net/http library [fedora-all]
1250352 – CVE-2015-5739 CVE-2015-5740 CVE-2015-5741 golang: HTTP request smuggling in net/http library
1250374 – golang: HTTP request smuggling in net/http library [epel-6]<br
security fixes for net/http smuggling

Fedora

Fedora EPEL 7 Security Update: erlang-R16B-03.11.el7

August 8, 2015 007admin

Resolved Bugs
1206714 – CVE-2015-2774 erlang: Erlang/OTP is vulnerable to Poodle in its TLS-1.0 implementation [epel-all]
1206712 – CVE-2015-2774 Erlang/OTP is vulnerable to Poodle in its TLS-1.0 implementation<br
Security fix for CVE-2015-2774

007 Software

Monthly Archives: August 2015

Thomson Reuters FATCA Arbitrary File Upload

WordPress Monetize 1.03 Cross Site Request Forgery / Cross Site Scripting

WordPress Bookmarkify 2.9.2 Cross Site Request Forgery / Cross Site Scripting

Hack A Garage And Car Inside With A Child's Toy And A Few Chips

US Govt Email Systems Downed In Russian Cyber Attack

Hackers Breach 2.4 Million Records From Carphone Warehouse

Gone In Less Than A Second

Pineapple autopwn script 2.3.0 or lower versions.

Fedora EPEL 6 Security Update: golang-1.4.2-3.el6

Fedora EPEL 7 Security Update: erlang-R16B-03.11.el7

Software and Security Information