Skip to content

LockedByte Blog

Exploiting and vulnerability analysis
  • Home
  • CTF Writeups
  • Vulnerabilities
  • Malware
  • Contact

Day: December 12, 2020

CVE-2019-18634 OOB write – analysis and development of a working PoC

Posted on December 12, 2020December 14, 2020 by lockedbyte

CVE-2019-18634 is a vulnerability in sudo prior to version 1.8.26, but then discovered to be possible to exploit in versions after 1.8.26 until 1.8.30. This means the only way to be full patched is using sudo version 1.8.31.

Continue reading
Posted in vulnerabilitiesLeave a Comment on CVE-2019-18634 OOB write – analysis and development of a working PoC

About this blog

This is just a basic blog where I plan to post about CVE analysis and exploitation, writeups for CTF challenges I find interesting, all mainly related to binary exploitation and low-level vulnerabilities.

Search

Recent Posts

  • Having fun with a Use-After-Free in ProFTPd (CVE-2020-9273)
  • From theory to practice: analysis and PoC development for CVE-2020-28018 (Use-After-Free in Exim)
  • CVE-2021-3156 – sudo heap-based overflow leading to privilege escalation (PoC development)
  • Java decompiler (jad) 1.5.8e – Stack-based buffer overflow analysis and PoC
  • CVE-2019-18634 OOB write – analysis and development of a working PoC

Sorted posts

  • August 2021
  • May 2021
  • February 2021
  • December 2020
  • November 2020
  • October 2020

Calendar

December 2020
M T W T F S S
 123456
78910111213
14151617181920
21222324252627
28293031  
« Nov   Feb »

Privacy Policy

Check the privacy policy here.

Proudly powered by WordPress