| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <yBXOcmZkEqFrNbWKChhoi7usAwtJxbKp6ENxo9jcmtEL-E7EyZInKEN7iP2xut1cfesI0mX-SV4gkUXklcyrlN8IMzmIlQ3HmKaQuadJXAM=@proton.me> Date: Wed, 29 Oct 2025 11:15:18 +0000 From: josephgoyd via Fulldisclosure <fulldisclosure@...lists.org> To: Christoph Gruber <list@...u.at> Cc: fulldisclosure@...lists.org, Noor Christensen <kchr+fd@...post.org> Subject: Re: [FD] : "Glass Cage" – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885) The exploit I caught in the wild and the flow of the attack chain are in this repo: https://github.com/JGoyd/Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201 The report was constructed via log analysis. -------- Original Message -------- On Wednesday, 10/29/25 at 01:44 Christoph Gruber <list@...u.at> wrote: It seems, the whole account is down -- Christoph Gruber > Am 29.10.2025 um 03:37 schrieb Noor Christensen <kchr+fd@...post.org>: > > On Thu Oct 2, 2025 at 11:45 PM CEST, josephgoyd via Fulldisclosure wrote: >>> ---------------------------------------------------------------------- >>> >>> Full Technical Disclosure: >>> >>> [Glass Cage iOS Attack Chain](https://weareapartyof1.substack.com/p/glass-cage-zero-day-imessage-attack) > > Hi Joseph, > > Looks like your post with the technical details is down; I'm getting a 404 since > yesterday. > > -- kchr > _______________________________________________ > Sent through the Full Disclosure mailing list > https://nmap.org/mailman/listinfo/fulldisclosure > Web Archives & RSS: https://seclists.org/fulldisclosure/ _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: https://seclists.org/fulldisclosure/
Powered by blists - more mailing lists