ISC StormCast for Wednesday, October 29th 2014

By Johannes Ullrich #wget vulnerable; and your #Cisco ASA; detect persistent software on OS X; #Yosemite leaking even more to the cloud.
wget Vulnerability
https://community.rapid7.com/community/metasploit/blog/2014/10/28/r7-2014-15-gnu-wget-ftp-symlink-arbitrary-filesystem-access
Cisco ASA Vulnerabilities
https://ruxcon.org.au/assets/2014/slides/Breaking%20Bricks%20Ruxcon%202014.pdf
Open source script to detect auto-start processes on OS X
https://github.com/synack/knockknock
unsaved “recovery” documents saved to iCloud in OS X Yosemite
https://datavibe.net/~sneak/20141023/wtf-icloud/ More Here