DLL shared sections have long been infamous for introducing security problems. A few months ago I decided to take a look if one can still find applications that use PE modules with shared sections in an insecure way (or using them at all). Today I'm releasing research notes, some tools and a demo of a Cygwin local privilege escalation (it's already fixed).
Read more...
Links / Blogs
- → dragonsector.pl
- → vexillium.org
- Security/Hacking:
- Reverse Eng./Low-Level:
- Programming/Code:
Posts
- Just another Null Byte Poison via Unicode variant (MuPDF mutool RCE),
- PWNing Online 2020 CFP,
- How to document your knowledge (in a CV/resume),
- confidence 2020 CFP deadline is approaching fast,
- What's the probability of a downloaded ZIP being broken?,
- GSGC2019: Winners,
- Teaser Dragon CTF 2019 - this Sat/Sun,
- Gynvael's Summer GameDev Challenge 2019,
- HackYeah 2019: 30 free tickets,
- Paged Out! Issue #1,
- → see all posts on main page
Add a comment: