NEWS > Lab
February 27, 2017
Advisory X41-2017-003: Directory Traversal in ktnef
X41 in person of Eric Sesterhenn noticed a directory traversal in ktnef, which is used to extract winmail.dat files.
February 23, 2017
Advisory X41-2017-04: Multiple Vulnerabilities in tnef
Eric Sesterhenn of X41 found multiple vulnerabilities in the tnef tool which is used to extract winmail.dat files.
February 15, 2017
Advisory X41-2017-02: Multiple Vulnerabilities in ytnef
Eric Sesterhenn of X41 found multiple vulnerabilities in the ytnef TNEF library which is used to extract winmail.dat files.
February 09, 2017
Wire Cryptography Audit (with Kudelski Security)
X41 D-Sec's Markus Vervier and Kudelski Security's JP Aumasson were hired to audit Wire's cryptography core, the proteus library.
September 22, 2016
Vulnerabilities in Signal Private Messenger
Two vulnerabilities in signal have been uncovered by Markus Vervier and Jean-Philippe Aumasson, which allow attackers to modify encrypted attachments and crash the Signal app permanently.
