This post is available at https://adepts.of0x.cc/proftpd-cve-2020-9273-exploit/
From theory to practice: analysis and PoC development for CVE-2020-28018 (Use-After-Free in Exim)
This post is available here: https://adepts.of0x.cc/exim-cve-2020-28018/
CVE-2021-3156 – sudo heap-based overflow leading to privilege escalation (PoC development)
On 26th of January, a new sudo vulnerability came out reported by Qualys (Baron Samedit).
The advisory is available here.
The vulnerability is present in the sudo code for 10 years, which attracts a lot, as a ton sudo versions are affected.
Java decompiler (jad) 1.5.8e – Stack-based buffer overflow analysis and PoC
This is an analysis of a vulnerability discovered by Juan Sacco. The vulnerability has no given CVE ID.
The interesting fact here is that at the time of writing, the latest version for linux-based systems is the vulnerable version.
Continue readingCVE-2019-18634 OOB write – analysis and development of a working PoC
CVE-2019-18634 is a vulnerability in sudo prior to version 1.8.26, but then discovered to be possible to exploit in versions after 1.8.26 until 1.8.30. This means the only way to be full patched is using sudo version 1.8.31.
Continue readingKipodAfterFree CTF 2020 – Shadow stuck
This challenge was from KipodAfterFree CTF 2020
The challenge was interesting as it is an implementation of a Shadow stack to save a backup of saved RIP addresses and compare them before function returns, that is a good way to detect Buffer overflow exploitation attemps and block them.
Continue reading
Continue reading
Technical analysis of CVE-2014-0160 (Heartbleed) OOB read
Introduction
This will be a short technical analysis of CVE-2014-0160, or it’s well-known name OpenSSL Heartbleed.
Yes, it is a bit old… but the goal of this blog is not security advisory, it is to analyze past and present vulnerabilities for educational purposes, so let’s start…
Continue reading