what you don't know can hurt you
Showing 1 - 17 of 17 RSS Feed

Files from Nikita Tarakanov

First Active2009-03-12
Last Active2011-07-25
Safari / Webkit Memory Corruption Proof Of Concept
Posted Jul 25, 2011
Authored by Nikita Tarakanov, Alex Bazhanyuk

Webkit memory corruption proof of concept exploit that can be leveraged against Safari versions prior to 5.1 and 5.0.6.

tags | exploit, proof of concept
advisories | CVE-2011-0222
MD5 | cfa30a21804b0960d771cd3b301c70a2
Webkit Memory Corruption / Code Execution
Posted Jul 25, 2011
Authored by Nikita Tarakanov, Alex Bazhanyuk

Remote exploitation of a memory corruption vulnerability in WebKit, as included with multiple vendors' browsers, could allow an attacker to execute arbitrary code with the privileges of the current user. Scalable Vector Graphics (SVG) is an XML based file format used to describe two dimensional vector graphics. It defines both a markup language, and a JavaScript interface. When processing DOM queries to SVG tags, Safari fails to handle exceptional conditions. It is possible to trigger a use after free vulnerability by query some properties of SVG tags. This leaves a C++ object pointer in an inconsistent state, which can lead to the execution of arbitrary code. Safari versions prior to 5.1 and 5.0.6 are vulnerable.

tags | advisory, remote, arbitrary, javascript
advisories | CVE-2011-0222
MD5 | 279f8c6bbeef1676a197cd32d858e563
Microsoft Windows XP WmiTraceMessageVa Integer Truncation
Posted Mar 1, 2011
Authored by Nikita Tarakanov

Proof of concept exploit that demonstrates the Microsoft Windows XP WmiTraceMessageVa integer truncation vulnerability as described in MS11-011.

tags | exploit, proof of concept
systems | windows, xp
advisories | CVE-2011-0045
MD5 | a030ca0f85ab41754f7bdf439317b6fb
CA Internet Security Suite 2010 KmxSbx.sys Kernel Pool Overflow
Posted Nov 28, 2010
Authored by Nikita Tarakanov

CA Internet Security Suite 2010 KmxSbx.sys kernel pool overflow exploit.

tags | exploit, overflow, kernel
systems | linux
MD5 | 2300e6c48c68716a4e194924b1e62f53
G Data TotalCare 2011 NtOpenKey Race Condition
Posted Nov 8, 2010
Authored by Nikita Tarakanov

G Data TotalCare 2011 suffers from a NtOpenKey race condition vulnerability.

tags | exploit
MD5 | 612affa28396e6150bb5e52d28834471
G Data TotalCare 2011 Local Kernel Exploit
Posted Nov 8, 2010
Authored by Nikita Tarakanov

G Data Totalcare 2011 local kernel exploit.

tags | exploit, kernel, local
MD5 | f51ad061b8d847e596279dc7a0de1056
Avast! Internet Security Denial Of Service
Posted Nov 5, 2010
Authored by Nikita Tarakanov

Avast! Internet Security aswtdi.sys local denial of service proof of concept exploit.

tags | exploit, denial of service, local, proof of concept
MD5 | 5b9c5f38469170b96d25e86121b0ec31
Avira Premium Security Suite Race Condition
Posted Nov 4, 2010
Authored by Nikita Tarakanov

The avipbb.sys kernel driver distributed with Avira Premium Security Suite contains a race condition vulnerability in the handling parameters of NtCreatekey function. Proof of concept included.

tags | exploit, kernel, proof of concept
MD5 | 22c26dc6ba1ca688bba31a5d968f4d7e
AVG Internet Security 9.0.851 Denial Of Service
Posted Nov 3, 2010
Authored by Nikita Tarakanov

AVG Internet Security version 9.0.851 local denial of service exploit.

tags | exploit, denial of service, local
MD5 | 55c8bab6042b8176ca86eca968d90d65
Trend Micro Titanium Maximum Security 2011 Local Exploit
Posted Nov 2, 2010
Authored by Nikita Tarakanov

Trend Micro Titanium Maximum Security 2011 local kernel exploit.

tags | exploit, kernel, local
MD5 | 60d96f4f8dd8268268bce6ac25699f36
CA Internet Security Suite Denial Of Service
Posted Aug 26, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Positive Technologies Research Team has discovered a denial of service (DoS) vulnerability in CA Internet Security Suite. The IOCTL handler in vetmonnt.sys does not properly validate buffer data associated with the Irp object, which allows local users to crash the system.

tags | advisory, denial of service, local
advisories | CVE-2009-0682
MD5 | affb2d58cf6719967b3eb511ec70be3f
Microsoft Windows MSMQ Privilege Escalation
Posted Aug 13, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Positive Technologies Research Team has discovered a privilege escalation vulnerability in Windows Message Queuing service (MSMQ). The IOCTL handler in mqac.sys does not properly validate buffer data associated with the Irp object, which allows local users to crash the system or execute arbitrary code with SYSTEM privileges.

tags | advisory, arbitrary, local
systems | windows
advisories | CVE-2009-1922
MD5 | a789b1b7aab02f482506c80db433e8ca
PGP Desktop Pgpdisk.sys / Pgpwded.sys Vulnerabilities
Posted Apr 14, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Positive Technologies Research Team has discovered several vulnerabilities in PGP Desktop version 9.9.0 build 397.The IOCTL handler in pgpdisk.sys does not properly validate buffer data associated with the Irp object, which allows local users to crash the system. The IOCTL handler in pgpwded.sys does not properly validate buffer data associated with the Irp object, which allows local users to crash the system or execute arbitrary code with SYSTEM privileges.

tags | advisory, arbitrary, local, vulnerability
advisories | CVE-2009-0681
MD5 | c99eaa2efe6e0fd5e45eeb593c7cc1c2
Positive Technologies - VMware
Posted Apr 7, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Positive Technologies Research Team has discovered denial of service vulnerabilities in VMware products. The IOCTL handler in hcmon.sys does not properly validate buffer data associated with the Irp object, which allows local users with administrative privileges to crash the system.

tags | advisory, denial of service, local, vulnerability
advisories | CVE-2009-1146
MD5 | 048085b0e7413d6bf210af12d4158093
Positive Technologies - VMware
Posted Apr 7, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Positive Technologies Research Team has discovered privilege escalation vulnerabilities in VMware products. Buffer overflow vulnerability exists in vmci.sys driver. Local user with administrative privileges can execute arbitrary code with SYSTEM privileges.

tags | advisory, overflow, arbitrary, local, vulnerability
advisories | CVE-2009-1147
MD5 | 236a0fec8b4e5617880030d9edb2ef51
Trend Micro Internet Security Pro 2009 Privilege Escalation
Posted Apr 1, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Positive Technologies Research Team has discovered multiple privilege escalation vulnerabilities in Trend Micro products. The IOCTL handler in tmactmon.sys uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate buffer data associated with the Irp object, which allows local users to gain SYSTEM privileges.

tags | advisory, local, vulnerability
advisories | CVE-2009-0686
MD5 | 2b504d8f7d1d15f6e2ef89e0cf695b0c
SlySoft ElbyCDIO.sys Denial Of Service
Posted Mar 12, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Multiple products from SlySoft suffer from a ElbyCDIO.sys related denial of service vulnerability. These include AnyDVD versions 6.5.2.2 and below, Virtual CloneDrive versions 5.4.2.3 and below, CloneDVD versions 2.9.2.0 and below, and CloneCD versions 5.3.1.3 and below.

tags | advisory, denial of service
advisories | CVE-2009-0824
MD5 | 1ca2a66e15e9631c7a443df7617038b5
Page 1 of 1
Back1Next

File Archive:

September 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    20 Files
  • 2
    Sep 2nd
    15 Files
  • 3
    Sep 3rd
    15 Files
  • 4
    Sep 4th
    4 Files
  • 5
    Sep 5th
    1 Files
  • 6
    Sep 6th
    1 Files
  • 7
    Sep 7th
    15 Files
  • 8
    Sep 8th
    27 Files
  • 9
    Sep 9th
    7 Files
  • 10
    Sep 10th
    16 Files
  • 11
    Sep 11th
    9 Files
  • 12
    Sep 12th
    0 Files
  • 13
    Sep 13th
    0 Files
  • 14
    Sep 14th
    25 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    15 Files
  • 17
    Sep 17th
    15 Files
  • 18
    Sep 18th
    0 Files
  • 19
    Sep 19th
    0 Files
  • 20
    Sep 20th
    0 Files
  • 21
    Sep 21st
    0 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close