This paper will walk you through the proof-of-concept and technical details of exploitation for IOActive's recent NFC relay attack on the newest Tesla vehicle, the Model Y. To successfully carry out the attack, IOActive reverse-engineered the NFC protocol Tesla uses between the NFC card and the vehicle, and they then created custom firmware modifications that allowed a Proxmark RDV4.0 device to relay NFC communications over Bluetooth/Wi-Fi using the Proxmark's BlueShark module.
1b2f050c027e1bfe9702c6a2a927a78ccba6ef0043e76bbe3a63de1a54eaecc8
Dell Netvault Backup version 10.0.1.24 suffers from a remote denial of service vulnerability.
cea93a970b26c260d4cfe226a38ac0306c6a2fa0fcf44c901dda2ec3e50eb727
WinArchiver version 3.2 suffers from a SEH-based buffer overflow vulnerability.
6e206a8a5bb2693cb96ef406b23482f125a2165e42334ccf58a79646e69b5217
Wiz version 5.0.3 suffers from a user mode write access violation vulnerability.
63d43930c87c789aa57942fdecbe974ffb10518802ad97ec2eb9eb227bbc7784
PWStore version 2010.8.30.0 suffers from cross site scripting and denial of service vulnerabilities.
62cf2734ff3e28570fd22dd8b33efaa47690cdfc48bd30e61e0caf0cb757102d
FuzeZip version 1.0.0.131625 suffers from a SEH based overflow and stack based overflow which is protected by stack cookies.
7997f627ad9bdf3236c4f71c63ca741f2fbd67c404def236820282873b3f4e8d
Winarchiver version 3.2 structured exception handler buffer overflow exploit that binds a shell to port 4444.
e03c150650d0c093092de920a5d5778e57636907dea5df9c2351fec4f6e3d06d
FuzeZip version 1.0.0.131625 structured exception handler buffer overflow exploit that binds a shell to port 4444.
16af598a8a9110ba118802425d3aee66e98d1676f712385eb4834b602a3e7d53