DLL shared sections have long been infamous for introducing security problems. A few months ago I decided to take a look if one can still find applications that use PE modules with shared sections in an insecure way (or using them at all). Today I'm releasing research notes, some tools and a demo of a Cygwin local privilege escalation (it's already fixed).
Read more...
Links / Blogs
- → dragonsector.pl
- → vexillium.org
- Security/Hacking:
- Reverse Eng./Low-Level:
- Programming/Code:
Posts
- Crow HTTP framework use-after-free,
- Crowbleed (Crow HTTP framework vulnerability),
- Treebox - Python AST sandbox challenge from Google CTF 2022,
- An informal review of CTF abuse,
- Debug Log: Why is my M.2 SSD so slow?,
- Screams of Power vulnerabilities (Powertek-based PDUs),
- Google's Beginner Quest 2021 - all tasks solved recording,
- Seventh Inferno vulnerability (some NETGEAR smart switches),
- Draconian Fear vulnerability (some NETGEAR smart switches),
- Demon's Cries vulnerability (some NETGEAR smart switches),
- → see all posts on main page
Add a comment: