Ida pro 5.5 is due for released this week some time so snap it up :)
I'm looking forward to testing it and looking at some of the new functions it
has.
IDA Pro 5.5 goes alpha
Thursday 4 June 2009
Friday 22 May 2009
Winamp 5.551 MAKI Parsing Integer Overflow PoC
The poc code can be found here im working on getting shell code execution over the next day or 2 as im working on 3 exploits already atm.And am very busy.
Btw His0k4 your exploits don't work
---------------------------------------------
Here is the poc code for the overflow.
Winamp 5.551 MAKI Parsing Integer Overflow PoC
---------------------------------------------
I managed to get shell code executed over the weekend and
the exploit has been sent over at milwr0m.
I will update with a link as soon as it goes
up and Also works for vista sp1 and windows xpsp3
Please stay tuned im working on a few integer overflows
of my own.
Here is the working exploit code for the overflow.
Winamp 5.551 MAKI Parsing Integer Overflow Exploit
Btw His0k4 your exploits don't work
---------------------------------------------
Here is the poc code for the overflow.
Winamp 5.551 MAKI Parsing Integer Overflow PoC
---------------------------------------------
I managed to get shell code executed over the weekend and
the exploit has been sent over at milwr0m.
I will update with a link as soon as it goes
up and Also works for vista sp1 and windows xpsp3
Please stay tuned im working on a few integer overflows
of my own.
Here is the working exploit code for the overflow.
Winamp 5.551 MAKI Parsing Integer Overflow Exploit
Thursday 7 May 2009
Possible openoffice.org v3.1 function pointer manipulation /Integer overflow
I was not sure how to class this bug as i never done any research covering integer overflow's or function pointer manipulation.
The write access violation was found by replacing bytes within a specially crafted spread sheet.
I am getting in touch with a few people to see if exploitation is possible or feezable to run arbitrary code execution.
Will update in a few days.
:Update:
Information has been submitted to a company for further analysis.
The write access violation was found by replacing bytes within a specially crafted spread sheet.
I am getting in touch with a few people to see if exploitation is possible or feezable to run arbitrary code execution.
Will update in a few days.
:Update:
Information has been submitted to a company for further analysis.
Tuesday 7 April 2009
Xbmc remote buffer over-flow 8.10
These are the buffer overflows i recently found
in the xbmc application they have been pached as of
now you can get the new version of xbmc from there
web site.
XBMC 8.10 GET Request Remote Buffer Overflow Exploit (SEH) (univ)
XBMC 8.10 (GET Requests) Multiple Remote Buffer Overflow PoC
XBMC 8.10 (Get Request) Remote Buffer Overflow Exploit (win)
XBMC 8.10 (takescreenshot) Remote Buffer Overflow Exploit
XBMC 8.10 (get tag from file name) Remote Buffer Overflow Exploit
Im a little bussy atm and will sort blog out some time this week .
in the xbmc application they have been pached as of
now you can get the new version of xbmc from there
web site.
XBMC 8.10 GET Request Remote Buffer Overflow Exploit (SEH) (univ)
XBMC 8.10 (GET Requests) Multiple Remote Buffer Overflow PoC
XBMC 8.10 (Get Request) Remote Buffer Overflow Exploit (win)
XBMC 8.10 (takescreenshot) Remote Buffer Overflow Exploit
XBMC 8.10 (get tag from file name) Remote Buffer Overflow Exploit
Im a little bussy atm and will sort blog out some time this week .
Subscribe to:
Posts (Atom)