{"uuid": "e6fb7d5c-dada-4f27-b3ed-965e98394fbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38396", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10697", "content": "#Red_Team_Tactics\n1. ScriptBlock Smuggling:\nSpoofing PowerShell Security Logs and Bypassing AMSI Without Reflection/Patching\nhttps://bc-security.org/scriptblock-smuggling\n2. Abusing title reporting and tmux integration in iTerm2 for code execution (PoC for CVE-2024-38396)\nhttps://vin01.github.io/piptagole/escape-sequences/iterm2/rce/2024/06/16/iterm2-rce-window-title-tmux-integration.html", "creation_timestamp": "2024-06-18T11:31:25.000000Z"}