the original cloud security
Showing 1 - 25 of 30 RSS Feed

Files from x90c

Email addressgeinblues at gmail.com
First Active2006-01-15
Last Active2017-02-21
Analysis Of The Ivyl Sample Kernel Rootkit
Posted Feb 21, 2017
Authored by x90c

This is a whitepaper providing an analysis of the Ivyl sample kernel rootkit. Written in Korean.

tags | paper, kernel
MD5 | 4baeea8a46ff0f645b75fb0fa6a0314f
Linux Kernel bt8xx Video Driver IOCTL Heap Overflow
Posted Nov 18, 2013
Authored by x90c

The bt8xx video driver in the Linux kernel suffers from an integer overflow that can trigger a kernel panic. Kernel versions 2.6.18 and below are affected.

tags | advisory, overflow, kernel
systems | linux
MD5 | b419ecbb705c9d3bbef2fe130b315d56
FreeBSD 10 qlxge/qlxgbe Driver IOCTL Multiple Kernel Memory Leak Bugs
Posted Nov 16, 2013
Authored by x90c

The qlxge/qlxgbe driver in FreeBSD versions 10 and below has vulnerabilities that leak arbitrary kernel memory to the userspace.

tags | advisory, arbitrary, kernel, vulnerability
systems | freebsd
MD5 | e6f3fafa75ce8e0fe98bbaad2b63f397
FreeBSD 10 nand Driver IOCTL Kernel Memory Leak Bug
Posted Nov 16, 2013
Authored by x90c

The nand driver in FreeBSD versions 10 and below has a vulnerability that leaks arbitrary kernel memory to the userspace.

tags | advisory, arbitrary, kernel
systems | freebsd
MD5 | 12d08911c16b59fa9a431db18a27a793
eCryptfs write_tag_3_packet Heap Buffer Overflow
Posted Nov 4, 2013
Authored by x90c

eCryptfs in Linux kernel version 2.6.18 suffer from a write_tag_3_packet heap buffer overflow vulnerability.

tags | advisory, overflow, kernel
systems | linux
MD5 | 36ef8088c331c08b1c5031de9a53fc15
KDE TOCTOU Vulnerability Case Study
Posted Nov 4, 2013
Authored by x90c

This write up is an in-depth analysis of the CVE-2010-0436 KDE TOCTTOU vulnerability.

tags | paper
advisories | CVE-2010-0436
MD5 | c89ed85b6fbef0c89d335ddf5983516d
The Audit DSOs Of The RTLD
Posted Oct 23, 2013
Authored by x90c

This article discusses audit DSOs and how to write one.

tags | paper
MD5 | c7005b62435f7d880a945a6b242e3862
The Internals Of Relocation
Posted Oct 21, 2013
Authored by x90c

This brief article explains the process of .text section's relocation after passing the link_map object.

tags | paper
MD5 | 321cc5836d1204a6477d340758143044
glibc 2.5 reloc Crash Bug
Posted Oct 21, 2013
Authored by x90c

glibc version 2.5 suffers from a crash bug due to relocation types.

tags | advisory
MD5 | e1ac6dd420f357bdc2ca72e6c70245b0
Linux Kernel Patches
Posted Oct 14, 2013
Authored by x90c

This is a brief whitepaper that discusses various Linux kernel patches.

tags | paper, kernel
systems | linux
MD5 | 2c3fc5ac34f881418e756971c762ccb0
libtiff 3.9.5 Integer Overflow
Posted Aug 26, 2013
Authored by x90c

libtiff versions 3.9.5 and below suffer from an integer overflow vulnerability.

tags | exploit, overflow
MD5 | 5547542f6a8434023ce8e192027866dd
xml2 Fuzzer 1.0
Posted Aug 26, 2013
Authored by x90c

xml2 Fuzzer is a fuzzing utility that daemonizes in order to fuzz the client side of a web browser.

tags | web, fuzzer
MD5 | 1ca43872c1fd3985bebc49cea04c3ac4
Samba nttrans Denial Of Service
Posted Aug 23, 2013
Authored by x90c

Samba malformed nttrans smb packet remote denial of service exploit. This is the second version of this exploit that adds an automated offset and second argument.

tags | exploit, remote, denial of service
advisories | CVE-2013-4124
MD5 | b79361919f1960c55e71a2fbbc77d6fb
Syswatch Linux Kernel Module 0.0.2
Posted Aug 23, 2013
Authored by x90c

The syswatch LKM protects against chroot breaks, a ptrace race condition, and more. It protects userland from general hacking attacks.

systems | linux
MD5 | 296547bf105ad551a75ce9fe6075d888
Samba Remote Denial Of Service
Posted Aug 21, 2013
Authored by x90c

Samba malformed nttrans smb packet remote denial of service exploit.

tags | exploit, remote, denial of service
advisories | CVE-2013-4124
MD5 | 113373cd7b0372c4f7190e40014c7627
Samba nttrans Replay Integer Overflow
Posted Aug 21, 2013
Authored by x90c

This is a brief paper detailing the Samba nttrans reply integer overflow vulnerability.

tags | paper, overflow
advisories | CVE-2013-4124
MD5 | 2dd13b92c134e4d1285d33a405573e06
Bash 3.0 Shell Sniffer 0.2 Auto Installer
Posted Aug 14, 2013
Authored by x90c | Site x90c.org

This code was written to perform auto-installation of the Bash 3.0 shell sniffer tool.

tags | tool, shell, rootkit, bash
systems | unix
MD5 | 7180cd9a300346b510a10080701627c4
Bash 3.0 Shell Sniffer 0.2
Posted Aug 14, 2013
Authored by x90c | Site x90c.org

This code is a shell sniffer that logs keystrokes for bash 3.0.

tags | tool, shell, rootkit, bash
systems | unix
MD5 | 15f6b35cbcc70e3a7bfa07915825be60
Reverse Engineering SEHOP Chain Validation
Posted Jan 11, 2012
Authored by x90c

This proof of concept reverse engineering code demonstrates SEHOP chain validation.

tags | exploit, proof of concept
MD5 | 51cce128eb69749ce5846a7d9b1c95f0
SEHOP Bypass Presentation
Posted Oct 4, 2010
Authored by x90c

Presentation called SEH all-at-once attack - A new technique to bypass SafeSEH+SEHOP protections.

tags | paper
MD5 | 3249316e2610d26a9951fc68cebf0b1c
AudioTran 1.4.2.4 SafeSEH+SEHOP Exploit
Posted Oct 4, 2010
Authored by x90c

AudioTran version 1.4.2.4 SafeSEH+SEHOP all-at-once attack method exploit.

tags | exploit
MD5 | 107c0d6e256461a631b287e0438ca951
Avast! Internet Security 5.0 Denial Of Service
Posted Aug 3, 2010
Authored by x90c

Avast! Internet Security version 5.0 suffers from a memory pool corruption denial of service vulnerability.

tags | exploit, denial of service
MD5 | 30170429d3910a259fce16283ffd8124
EasyFTP Server <= 1.7.0.11 MKD Command Stack Buffer Overflow
Posted Jul 27, 2010
Authored by x90c, jduck | Site metasploit.com

This Metasploit module exploits a stack-based buffer overflow in EasyFTP Server 1.7.0.11 and earlier. EasyFTP fails to check input size when parsing 'MKD' commands, which leads to a stack based buffer overflow. NOTE: EasyFTP allows anonymous access by default. However, in order to access the 'MKD' command, you must have access to an account that can create directories. After version 1.7.0.12, this package was renamed "UplusFtp". This exploit utilizes a small piece of code that I\\'ve referred to as 'fixRet'. This code allows us to inject of payload of ~500 bytes into a 264 byte buffer by 'fixing' the return address post-exploitation. See references for more information.

tags | exploit, overflow
MD5 | a31ab6edcdb29318cc3ec1bcff1a522d
Windows 7 x86 Scandown Method
Posted Jun 12, 2010
Authored by x90c

Whitepaper called Windows 7 x86's !nt scandown method on ring 0 (kernel ASLR bypass).

tags | paper, x86, kernel
systems | windows, 7
MD5 | 722141a105c28b83c5e347c9aee314a2
EasyFTP Server 1.7.0.2 MKD Buffer Overflow
Posted Apr 6, 2010
Authored by x90c

EasyFTP server version 1.7.0.2 MKD remote post-authentication buffer overflow exploit.

tags | exploit, remote, overflow
MD5 | 027a204a78f4920b962c526ce5e9e6b7
Page 1 of 2
Back12Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close