NEWS > Research Blog
February 03, 2018
Advisory X41-2018-001: Multiple Vulnerabilities in Yubico-Piv
Eric Sesterhenn of X41 discovered multiple vulnerabilities in Yubico-Piv
January 30, 2018
X41 At Conferences
We will be visiting several conferences and give talks in the first quarter of 2018.
December 18, 2017
Shadow on the Wall
Our team member Niklas decided to have a look at Shadowsocks to see how it handles this task, and noticed some interesting things.
December 01, 2017
Happy Holidays
Happy Holidays!
November 17, 2017
Wanted - Senior Security Consultant
We are looking for a senior security consultant in the Aachen area.
November 15, 2017
Advisory X41-2017-011: Multiple Vulnerabilities in Antragsgrün
Eric Sesterhenn of X41 discovered multiple vulnerabilities in the Antragsgrün web application
November 14, 2017
Kernel Fuzzing in Userspace
During some spare time between projects, we tried fuzzing the Linux kernel ASN.1 parsers in user space.
November 10, 2017
Advisory X41-2017-006: Multiple Vulnerabilities in PSFTPd Windows FTP server
X41 discovered multiple vulnerabilities in the PSFTPd Windows FTP server
October 13, 2017
Advisory X41-2017-010: Command Execution in shadowsocks-libev
Niklas Abel of X41 discovered command execution in shadowsocks-libev.
October 13, 2017
Advisory X41-2017-008: Multiple Vulnerabilities in shadowsocks
Niklas Abel of X41 discovered multiple vulnerabilities in shadowsocks.
September 18, 2017
X41 D-Sec GmbH releases Browser Security White Paper, assessing Google Chrome, Microsoft Edge, and Internet Explorer
X41 D-Sec GmbH (“X41”) - a research driven IT-Security company - released an in-depth analysis of the three leading enterprise web browsers Google Chrome, Microsoft Edge, and Internet Explorer.
June 05, 2017
Peplink Vulnerability Hunting
During a recent penetration test for a customer several vulnerabilities in peplink devices were uncovered.
April 13, 2017
HITBSECCONF17 - Markus Vervier Presents Research On Signal
Markus Vervier will present research on the Signal Private Messenger in Amsterdam at HITBSECCONF17.
March 21, 2017
Wanted - Junior Security Consultant
We are looking for a junior security consultant in the Aachen or Rhein-Main area.
March 20, 2017
TROOPERS17 - Signal Presentation And Meet-Up
X41 will be present at TROOPERS17 in Heidelberg and Markus Vervier will present research on the Signal Private Messenger
February 28, 2017
Advisory X41-2017-001: Multiple Vulnerabilities in X.org
Eric Sesterhenn of X41 discovered multiple vulnerabilities in X.org and related libraries.
February 27, 2017
winmail.dat considered harmful
X41 had a quick look at different TNEF tools, which help to extract winmail.dat files. This is what we found
February 27, 2017
Advisory X41-2017-003: Directory Traversal in ktnef
X41 in person of Eric Sesterhenn noticed a directory traversal in ktnef, which is used to extract winmail.dat files.
February 23, 2017
Advisory X41-2017-04: Multiple Vulnerabilities in tnef
Eric Sesterhenn of X41 found multiple vulnerabilities in the tnef tool which is used to extract winmail.dat files.
February 15, 2017
Advisory X41-2017-02: Multiple Vulnerabilities in ytnef
Eric Sesterhenn of X41 found multiple vulnerabilities in the ytnef TNEF library which is used to extract winmail.dat files.
