| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAP6wrbWg1+S36o_FZ5ENxnUaw3X4=z57pnhtvo-9GRYXp9xzSw@mail.gmail.com> Date: Mon, 10 Dec 2018 21:30:26 +0100 From: Marcin Kozlowski <marcinguy@...il.com> To: fulldisclosure@...lists.org Subject: [FD] Dynamic Loader Oriented Programming - Wiedergaenger PoC (Proof of Concept) on Ubuntu 16.04.5 LTS - 2018 Hi all, This is a great technique to reliably allow to escalate unbounded array access vulnerabilities. Full article/writeup of my experiences with screenshots is available at: https://www.linkedin.com/pulse/my-experiences-dynamic-loader-oriented-programming-poc-kozlowski/ or here as PDF: https://github.com/marcinguy/LOP-wiedergaenger/blob/master/wiedergaenger.pdf Repo URL, with samples, is at: https://github.com/marcinguy/LOP-wiedergaenger Again, I think this is a great technique and some more word should be spread about it. In case of further questions, feel free to contact me. Thanks, Marcin _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists