This is a brief write up discussing insecure functions susceptible to classic buffer overflows.
6c56ef6f21fb5c517c4f05fbff6461b2f130d800355ad39593d8b2f06bee3943
robinbhandari FTP suffers from a denial of service vulnerability.
b314daf661574d92eabdc5a8fee14abb66ab76b20a043a782e002bd16169b7c9
This whitepaper provides diamorphine linux kernel rootkit analysis. Written in Korean.
3846a3d0e864666faa5cfceec7cffa148271f2a9a0497e32b3cdfdcdc629d693
This is a whitepaper providing a Linux kernel hacking introduction. Written in Korean.
70b905774f039dbf1b79d316a75a314dd09b5e5f02ba71bf7dc495772f69434c
This is a whitepaper providing an analysis of the Ivyl sample kernel rootkit. Written in Korean.
71d40dd68c22a31b2cfc4dfd31815074bf58fa1edd58aba7f08a8f9a42c0f637
The bt8xx video driver in the Linux kernel suffers from an integer overflow that can trigger a kernel panic. Kernel versions 2.6.18 and below are affected.
5e999ef89be83bedfff1b0aeeec2f2106773a720437d97c4c3579bce3dba124e
The qlxge/qlxgbe driver in FreeBSD versions 10 and below has vulnerabilities that leak arbitrary kernel memory to the userspace.
7b42f8e5e80bb47fb47ae99870c929935ee839ea7eb108eb27deef74da4fab32
The nand driver in FreeBSD versions 10 and below has a vulnerability that leaks arbitrary kernel memory to the userspace.
11705da0b8bfd9c3bd8fe8bfbd867f3c93cda8e18da5a35626eb3d8ff3c47e6c
eCryptfs in Linux kernel version 2.6.18 suffer from a write_tag_3_packet heap buffer overflow vulnerability.
015570f2ec233897e40a39fd6d6b1250c0412b0d3c5a7f74de150f8212dc2cf0
This write up is an in-depth analysis of the CVE-2010-0436 KDE TOCTTOU vulnerability.
38416e656eed90eb727e8283a9b7f15d42bbf88b4930302e3793941e698ff9c6
This article discusses audit DSOs and how to write one.
c98b346c8f00afa069e1fa4f8056ab5dfc66f7f95ef9a5321bb113a18e4e8d8a
This brief article explains the process of .text section's relocation after passing the link_map object.
a5f963a9dcb408cc957d47bf57c12f5f9de416ea728b132bc68ab35f7d718857
glibc version 2.5 suffers from a crash bug due to relocation types.
163fcff7cbfeb2e0da5ae7c5f567ee8309c8399af6b50ef32484366325637dfc
This is a brief whitepaper that discusses various Linux kernel patches.
5334d65e04977552085549f202d6bb59ae90e69923984b89d09119c2bfb8472a
libtiff versions 3.9.5 and below suffer from an integer overflow vulnerability.
e047e24940fc1946d2bd9e6123520ff4837f2a59b4ec6f49e5d2d1e28babd003
xml2 Fuzzer is a fuzzing utility that daemonizes in order to fuzz the client side of a web browser.
6ce1679a18a737f7e82c37dd5a21cc85bfe82165cf1e8c95fb312c29f4e930d0
Samba malformed nttrans smb packet remote denial of service exploit. This is the second version of this exploit that adds an automated offset and second argument.
9ffc449f91de8aebdf2d549084d0b7ded62399e2e6a995fffee9b45af3a36af1
The syswatch LKM protects against chroot breaks, a ptrace race condition, and more. It protects userland from general hacking attacks.
a299a4f1783c3fa843156538cb7787c207faaa28921407f21d73668e5cf69d0e
Samba malformed nttrans smb packet remote denial of service exploit.
7c05718e61505b529b4fc56fdb9fe34f5f090de5045c62a525a74a2d1108d2f6
This is a brief paper detailing the Samba nttrans reply integer overflow vulnerability.
d225d3176b11780faefe076ec78e17e446d910e7a58fe9d59851b2b612d3da4e
This code was written to perform auto-installation of the Bash 3.0 shell sniffer tool.
0db5bc9774ba0b32ffa49115373f366cf35e5d084ff60d03694a15a033162885
This code is a shell sniffer that logs keystrokes for bash 3.0.
9b35fdfae427711f593e60b66dab25db64fbb15c2814f7d9219d9aed5f0ee9e0
This proof of concept reverse engineering code demonstrates SEHOP chain validation.
e333c142682d7f51d57c80a04d7397a465c342670021b893a2ad3c2f1ef6da5b
Presentation called SEH all-at-once attack - A new technique to bypass SafeSEH+SEHOP protections.
ba925334f97f480406e6e4d4dc5f1d652855e891b2c008139bbc8e4061c8fda5
AudioTran version 1.4.2.4 SafeSEH+SEHOP all-at-once attack method exploit.
61f0d37b7404c70d423bab568077a30ab64b9dac426d969bd07e4ca4a0536ba1