exploit20 Offensive Security Exploit Weekend Sud0′s story : After quickly analyzing the pdf file, it was clear that the PDF reader is vulnerable to a buffer overflow when parsing an overly long string in the "Title" field. (Simply open the pdf file in a editor or use Didier Stevens’ pdf-parser.py tool to list the elements in the pdf file) When opening the PoC pdf file in Foxit Reader (with Immunity Debugger attached to it), an access viola.. 2010. 11. 23. Firefox Addon Firesheep Exploit 누구나 Wi-Fi 네트워크를 스캔하고 다른 사람의 페이스북, 트위터, 혹은 기타 다른 호스팅 서비스 계정에 접속할 수 있도록 하는 파이어폭스 애드온이 등장했다. 투어콘(ToorCon) 보안 컨퍼런스에서 공개된 파이어쉽(Firesheep)이라는 이 애드온은 웹 애플리케이션 개발자인 에릭 버틀러가 만든 것으로, 그는 공개된 Wi-Fi를 통해서 비암호화된 웹사이트에 접속하는 것이 얼마나 위험한지 보여주기 위해서 이 애드온을 공개하게 됐다고 배경을 밝혔다. 2010. 11. 4. Invision Power Board SQL injection exploit by RST/GHC #!/usr/bin/perl ## Invision Power Board SQL injection exploit by RST/GHC ## vulnerable forum versions : 1.* , 2.* (<2.0.4) ## tested on version 1.3 Final and version 2.0.2 ## * work on all mysql versions ## * work with magic_quotes On (use %2527 for bypass magic_quotes_gpc = On) ## (c)oded by 1dt.w0lf ## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ## screen: ## ~~~.. 2010. 10. 26. Second generation AppleTV jailbroken with SHAtter exploit 2010. 10. 4. PuTTY DLL Hijacking Exploit (winmm.dll) /* Exploit Title: PuTTY DLL Hijacking Exploit (winmm.dll) Date: August 25, 2010 Author: storm (storm@gonullyourself.org) Version: 0.60 Tested on: Windows Vista SP2 http://www.gonullyourself.org/ gcc -shared -o winmm.dll PuTTY-DLL.c -DWIN32_LEAN_AND_MEAN PuTTY is a standalone program, so just plop the .dll in whatever directory the binary is in. */ #include #define DllExport __declspec (dllexport.. 2010. 8. 26. 이전 1 2 3 4 다음
