Showing 1 - 8 of 8

Files from Ismael Ripoll

First Active	2013-07-16
Last Active	2016-11-16

Cryptsetup 2:1.7.3-2 Root Initramfs Shell: Posted Nov 16, 2016; Authored by Hector Marco, Ismael Ripoll; A vulnerability in Cryptsetup, concretely in the scripts that unlock the system partition when the partition is ciphered using LUKS (Linux Unified Key Setup). This vulnerability allows to obtain a root initramfs shell on affected systems. The vulnerability is very reliable because it doesn't depend on specific systems or configurations. Attackers can copy, modify or destroy the hard disc as well as set up the network to data. In cloud environments it is also possible to remotely exploit this vulnerability without having "physical access". Cryptsetup versions 2:1.7.3-2 and below are affected.; tags | advisory, shell, root; systems | linux; advisories | CVE-2016-4484; SHA-256 | a533475e588d0a35025183dd93ff60b65d867075cd009e955f89a1138f7cd7fe; Download | Favorite | View

Grub2 Authentication Bypass: Posted Dec 15, 2015; Authored by Hector Marco, Ismael Ripoll; Grub2 versions 1.98 through 2.02 suffer from an authentication bypass vulnerability.; tags | advisory, bypass; advisories | CVE-2015-8370; SHA-256 | 83bd7487636061aa2b0800d6365ebfbe91d7c0307ab06febcf641741b08068f4; Download | Favorite | View

Glibc Pointer Guarding Weakness: Posted Sep 7, 2015; Authored by Hector Marco, Ismael Ripoll | Site hmarco.org; Glibc pointer guarding weakness proof of concept code.; tags | exploit, proof of concept; SHA-256 | 64411cf75336417b9d476a2bf486dd76842d1e2a6149f57b59c3900238a08677; Download | Favorite | View

Packet Storm Advisory 2014-1204-1 - Offset2lib: Bypassing Full ASLR On 64bit Linux: Posted Dec 5, 2014; Authored by Hector Marco, Ismael Ripoll | Site packetstormsecurity.com; The release of this advisory provides exploitation details in relation a weakness in the Linux ASLR implementation. The problem appears when the executable is PIE compiled and it has an address leak belonging to the executable. These details were obtained through the Packet Storm Bug Bounty program and are being released to the community.; tags | advisory, bug bounty, packet storm; systems | linux; SHA-256 | 57833cb6d2c4d2d145ba4e56f348f6182a247930713b65de664031a38287a959; Download | Favorite | View

Packet Storm Exploit 2014-1204-1 - Offset2lib: Bypassing Full ASLR On 64bit Linux: Posted Dec 5, 2014; Authored by Hector Marco, Ismael Ripoll | Site packetstormsecurity.com; Proof of concept code that demonstrates an ASLR bypass of PIE compiled 64bit Linux.; tags | exploit, proof of concept, bug bounty, packet storm; systems | linux; SHA-256 | af29e970411b02a4faa3410f217a6f31cf2be6b21d710ee65c2ff859aa9a0426; Download | Favorite | View

Sniffit Root Shell: Posted Nov 27, 2014; Authored by Hector Marco, Ismael Ripoll; A specially-crafted sniffit configuration file can be leveraged to execute code as root.; tags | exploit, root; advisories | CVE-2014-5439; SHA-256 | 0e5fe0fcd83bf75ca01e02b696edc874fa9921b6318df3ad0fddb1136bf2a3eb; Download | Favorite | View

s3dvt Privilege Escalation: Posted Jun 2, 2014; Authored by Hector Marco, Ismael Ripoll; s3dvt suffers from a local privilege escalation vulnerability due to a lack of checking the setuid() return code.; tags | advisory, local; advisories | CVE-2013-6876; SHA-256 | 0a8c3b679a43618d9ffc8263cd5c4998800f72c4afbd6b76ebceaaf9c16532cb; Download | Favorite | View

Eglibc PTR MANGLE Bug: Posted Jul 16, 2013; Authored by Hector Marco, Ismael Ripoll; Eglibc suffers from a PTR MANGLE bug. All statically linked applications compiled with glibc and eglibc are affected, independent of the operating system distribution. Note that this problem is not solved by only patching the eglibc, but it is also necessary to recompile all static executables. Proof of concept exploit included.; tags | exploit, proof of concept; systems | linux; advisories | CVE-2013-4788; SHA-256 | 886e08b8e90e2d9b861f8e4dba2d25b994c4200f1929e01cc6bc74363c57f184; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days