Exploit the possiblities
Showing 1 - 25 of 48 RSS Feed

Files from Rodrigo Rubira Branco

Real NameRodrigo Rubira Branco BSDaemon
Email addressrodrigo at kernelhacking.com
Websitewww.kernelhacking.com/rodrigo
First Active2004-12-12
Last Active2012-05-15
View User Profile

Personal Background

Rodrigo Rubira Branco (BSDaemon) is the Chief Security Research of Check Point and the founder of the Vulnerability Discovery Team (VDT) of the company. Previously he worked as a Senior Vulnerability Researcher in COSEINC, as Principal Security Researcher at Scanit and as Staff Software Engineer in the IBM Advanced Linux Response Team (ALRT) also working in the IBM Toolchain (Debugging) Team for PowerPC Architecture. He is a member of the group RISE Security and the organizer of H2HC, the oldest hacking conference in Latin America. He is the maintainer of the StMichael/StJude projects (www.sf.net/projects/stjude), the developer of the SCMorphism (www.kernelhacking.com/rodrigo), and an active contributor to open-source projects (like ebizzy, linux kernel, others). Accepted speaker in lots of security and open-source related events as H2HC, HITB, XCon, VNSecurity, OLS, Defcon, Troopers and others.


Apple Quicktime .pct Parsing Memory Corruption
Posted May 15, 2012
Authored by Rodrigo Rubira Branco

Apple Quicktime does not properly parse .pct media files, which causes a corruption in module DllMain by opening a malformed file with an invalid value located in PoC repro01.pct at offset 0x20E. Quicktime Player version 7.7.1 (1680.42) on Windows XP SP 3 - PT_BR is confirmed affected. Other versions may also be affected.

tags | advisory
systems | windows, apple, xp
advisories | CVE-2012-0671
MD5 | c437473b3959e9b762550efe55331b27
Adobe Shockwave Player .dir Memory Corruption
Posted May 10, 2012
Authored by Rodrigo Rubira Branco | Site dissect.pe

Adobe Shockwave Player suffers from multiple memory corruption vulnerabilities when parsing .dir media files. This file has three advisories pertaining to these issues. Versions affected include Shockwave Player version 11.6.3r633, Module IMLLib.framework on MacOS X 10.7.2 (11C74).

tags | advisory, vulnerability
advisories | CVE-2012-2029, CVE-2012-2030, CVE-2012-2031
MD5 | 26c6cfc8175a4721af8f7b9b7ebdb9a9
Recaptcha WordPress Plugin Cross Site Scripting
Posted Mar 18, 2011
Authored by Rodrigo Rubira Branco

The Recaptcha WordPress plugin suffers from a cross site scripting vulnerability.

tags | advisory, xss
advisories | CVE-2011-0759
MD5 | 64afbd44aae207b7dcbb435d274eddda
Related Posts WordPress Plugin Cross Site Scripting
Posted Mar 18, 2011
Authored by Rodrigo Rubira Branco

The Related Posts WordPress plugin suffers from a cross site scripting vulnerability.

tags | advisory, xss
advisories | CVE-2011-0760
MD5 | a2e8e7c14afdc649c659a26bb9976c0c
rpc.cmsd Remote Proof Of Concept Exploit
Posted Feb 8, 2011
Authored by Rodrigo Rubira Branco

rpc.cmsd / Calendar Manager RPC service remote proof of concept buffer overflow exploit for Solaris, AIX, and HP-UX.

tags | exploit, remote, overflow, proof of concept
systems | solaris, aix, hpux
advisories | CVE-2010-4435
MD5 | d9f09b7556322f5ef87ed00d0fd9a449
LiveZilla Cross Site Scripting
Posted Dec 27, 2010
Authored by Rodrigo Rubira Branco

LiveZilla versions prior to 3.2.0.2 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2010-4276
MD5 | 05c31fbf5eb788148dbf3c62282c69b1
Radius Manager Cross Site Scripting
Posted Dec 17, 2010
Authored by Rodrigo Rubira Branco

Radius Manager version 3.8.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2010-4275
MD5 | 6783d9e441a713674afbb1c7cbd2637b
Embedded Video WordPress Plugin Cross Site Scripting
Posted Dec 17, 2010
Authored by Rodrigo Rubira Branco

Embedded Video WordPress Plugin suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2010-4277
MD5 | 8d334a9e0e49210b531f81abc1b6c6c9
Apple Quicktime Memory Corruption
Posted Dec 17, 2010
Authored by Rodrigo Rubira Branco

The Apple QuickTime player does not properly parse .fpx media files, which causes a memory corruption by opening a malformed file with an invalid value located in PoC repro.fpx at offset 0x49. Tested vulnerable are versions 7.6.8 (1675) and 7.6.6 (1671).

tags | advisory
systems | apple
advisories | CVE-2010-3801
MD5 | 07c9b19419ee844d05c4e27b7fd4518c
H2HC Cancun Entrance Is Free
Posted Nov 23, 2010
Authored by Rodrigo Rubira Branco | Site h2hc.com.br

Thanks to the sponsors that helped make it happen, H2HC Cancun entrance is free on December 3rd, 2010.

tags | paper, conference
MD5 | 4bd6fcc4904e52dc7c01daea9fd4e8ab
Apple Directory Services Memory Corruption
Posted Nov 11, 2010
Authored by Rodrigo Rubira Branco

Apple Directory Services suffers from a memory corruption vulnerability.

tags | advisory
systems | apple
advisories | CVE-2010-1840
MD5 | 9f94bf7c9adbbaf642667f098ec4143c
Spree e-commerce JSON Hijacking
Posted Nov 9, 2010
Authored by Rodrigo Rubira Branco

There are multiple JSON hijacking vulnerabilities in Spree e-commerce and as a result, an attacker can steal confidential information such as: product costs, price and quantities and users email, encrypted passwords, tokens, OpenID identifier, phone and address as well as orders count and values by period.

tags | advisory, vulnerability
advisories | CVE-2010-3978
MD5 | 55516e0e7de4384fedd5dc5b678036e7
cforms WordPress Plugin Cross Site Scripting
Posted Nov 2, 2010
Authored by Rodrigo Rubira Branco

The cforms WordPress plugin suffers from a cross site scripting vulnerability. Version 11.5 is affected.

tags | exploit, xss
advisories | CVE-2010-3977
MD5 | 0038f62fa7c5d7f002af9fc8edb3517f
Adobe Shockwave Player Memory Corruption
Posted Nov 1, 2010
Authored by Rodrigo Rubira Branco, Michael Golub

Adobe Shockwave Player suffers from multiple memory corruption vulnerabilities.

tags | advisory, vulnerability
advisories | CVE-2010-4086, CVE-2010-4087, CVE-2010-4088, CVE-2010-4089
MD5 | 26f21fbe5aa4e225b34522d257733b3c
Microsoft Internet Explorer Uninitialized Memory Corruption
Posted Oct 13, 2010
Authored by Rodrigo Rubira Branco

Microsoft Internet Explorer suffers from an uninitialized memory corruption vulnerability.

tags | advisory
advisories | CVE-2010-3331
MD5 | cb8e1ff5d90d3b9e598e0f4d69904ed7
Synology Disk Station Code Execution / Cross Site Request Forgery / Cross Site Scripting
Posted Sep 28, 2010
Authored by Rodrigo Rubira Branco

Synology Disk Station suffers from code execution, cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, code execution, xss, csrf
advisories | CVE-2010-2453
MD5 | d80a98d94b24f037d61622394812c6be
Apple CoreGraphics Memory Corruption
Posted Aug 27, 2010
Authored by Rodrigo Rubira Branco

Apple Preview.app is the default application used in Apple MacOS systems in order to visualize PDF files and does not properly parse PDF files, which leads to memory corruption when opening a malformed file with an invalid size on JBIG2 structure at offset 0x2C1 as in PoC Repro1.pdf or offset 0x2C5 as in PoC Repro2.pdf (both values trigger the same vulnerability).

tags | advisory
systems | apple
advisories | CVE-2010-1801
MD5 | 81a365eab7eb44bc60ed52a063dd3946
Adobe Shockwave Player Memory Corruption
Posted Aug 26, 2010
Authored by Rodrigo Rubira Branco

Checkpoint has released advisories detailing memory corruption vulnerabilities in Adobe Shockwave Player.

tags | advisory, vulnerability
advisories | CVE-2010-2868, CVE-2010-2882, CVE-2010-2869, CVE-2010-2864, CVE-2010-2881, CVE-2010-2880
MD5 | a66391257c7b3d3211959dbfd31fa865
rpc.ttdbserverd x86 Proof Of Concept Exploit
Posted Aug 17, 2010
Authored by Rodrigo Rubira Branco

rpc.ttdbserverd database parser heap overflow proof of concept exploit for Solaris x86.

tags | exploit, overflow, x86, proof of concept
systems | solaris
advisories | CVE-2010-0083
MD5 | 6c96a5ec281f1edaa4754a1c0a028028
rpc.ttdbserverd SPARC Proof Of Concept Exploit
Posted Aug 17, 2010
Authored by Rodrigo Rubira Branco

rpc.ttdbserverd database parser heap overflow proof of concept exploit for Solaris SPARC.

tags | exploit, overflow, proof of concept
systems | solaris
advisories | CVE-2010-0083
MD5 | 0057d6f278ed4809852593bf1848d7eb
Microsoft Office Word HTML Linked Objects Memory Corruption
Posted Aug 13, 2010
Authored by Rodrigo Rubira Branco

There exists a vulnerability within the way Microsoft Word handles html linked objects, which leads to attacker controlled memory write and code execution.

tags | advisory, code execution
advisories | CVE-2010-1903
MD5 | c122073cfa7539c84dfb2a854ae7323b
rpc.pcnfsd Format String Exploit
Posted Jul 18, 2010
Authored by Rodrigo Rubira Branco

rpc.pcnfsd remote format string exploit for AIX versions 6.1.0 and below.

tags | exploit, remote
systems | aix
advisories | CVE-2010-1039
MD5 | 80bf54ff89c750ace3b212bdc80f1528
Ghostscript Stack Overflow Exploits
Posted Jul 18, 2010
Authored by Rodrigo Rubira Branco

Two working proof of concept exploits for a stack overflow in Ghostscript. One works against PCBSD exploiting the vulnerability through CUPS. The other creates a .ps file that will trigger the vulnerability.

tags | exploit, overflow, proof of concept
advisories | CVE-2010-1869
MD5 | 72800131fb24c5b34294b9536af21be3
ToolTalk rpc.ttdbserverd Database Parser Heap Overflow
Posted Jul 14, 2010
Authored by Rodrigo Rubira Branco

There exists a vulnerability within a function of the ToolTalk database server (rpc.ttdbserverd), which when properly exploited can lead to compromise of the vulnerable system. This vulnerability can be triggered by creating a fake database (.rec file) on the system and calling remote procedure 7 of ToolTalk database server pointing to this database, leading to a heap overflow.

tags | advisory, remote, overflow
MD5 | af99c10f5da75394836296a61008c25d
rpc.pcnfsd Syslog Format String
Posted May 22, 2010
Authored by Rodrigo Rubira Branco

rpc.pcnfsd suffers from a syslog related format string vulnerability. IBM AIX versions 6.1.0 and below, IRIX 6.5 and HP-UX versions 11.11, 11.23 and 11.31 are all affected.

tags | advisory
systems | irix, aix, hpux
advisories | CVE-2010-1039
MD5 | 6a561a87ac3fe6bcbce97917f6ebcfbf
Page 1 of 2
Back12Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    1 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close