Definition of Exploits
What are exploits?
An illegal or unethical attack that can take advantage of a system vulnerability.
|
|
Exploits
|
|
Smashing C++ VPTRS
At the present time, a widely known set of techniques instructs us how to exploit buffer overflows in programs usually written in C. Although C is almost ubiquitously used, we are seeing many programs also be written in C++. For the most part, the techniques that are applicable in C are available in C++ also, however, C++ can offer us new possibilities in regards to buffer overflows, mostly due to the use of object oriented technologies. We are going to analyze one of these possibilities, using the C++ GNU compiler, on an x86 Linux system.
Read the Article
|
The Frame Pointer Overwrite
Buffers can be overflowed, and by overwriting critical data stored in the target process's address space, we can modify its execution flow. This is old news. This article is not much about how to exploit buffer overflows, nor does it explain the vulnerability itself. It just demonstrates it is possible to exploit such a vulnerability even under the worst conditions, like when the target buffer can only be overflowed by one byte. Many other esoteric techniques where the goal is to exploit trusted processes in the most hostile situations exist, including when privileges are dropped. We will only cover the one byte overflow here.
Read the Article
|
Buffer Overruns, whats the real story?
In its simplest terms, a buffer overrun is writing to more memory than was reserved.. Since this happens on the stack, an understanding of how the stack works is essiential to altering how a program works, during runtime (normally code isnt executed off the stack, and some OS's prevent it, as you can only execute from the code section and not the data section.. However most unices (all I know of) allow it).
Read the Article
|
Stack Exploit Coding - A PERL perspective
PERL stack buffer overflow exploits aren't as well explored as C exploits when it comes to munging the stack. This brief paper will outline ways PERL can be used to create a working exploit with greater ease than standard C based exploits. Afterall PERL was developed for data manipulation, why not put it to use?
Read the Article
|
Taking advantage of non-terminated adjacent memory spaces
This article details the hazards of non-terminated buffers (specifically non-terminated strings), and their potential impact on the security of a application. This issue is discussed from a variety potential situations, culminating with an example exploit which abuses adjacent non-terminated string buffers together to perform program redirection via a buffer overflow. Like most bugs this is not an unknown problem, however judging from random source browsing, it appears that this is not a widely understood issue.
Read the Article
|
Buffer overflows demystified
This document is a starter of a series of documents about some sort of subjects, which require great attention and involve pretty much detail; and aims to explain and clarify the very basic vulnerability type, namely local buffer overflows, and document the way to write exploits making use of such vulnerabilities.
Read the Article
|
Smashing The Stack For Fun And Profit
Over the last few months there has been a large increase of buffer overflow vulnerabilities being both discovered and exploited. Examples of these are syslog, splitvt, sendmail 8.7.5, Linux/FreeBSD mount, Xt library, at, etc. This paper attempts to explain what buffer overflows are, and how their exploits work.
Read the Article
|
Cross-Site Tracing - Protecting Businesses from a Simple Attack
One of the newest published cross-site scripting attacks (XSS), cross-site tracing (XST) bypasses any security mechanism put into place by a developer and enables an attacker to gain access to an individual's cookies and authentication credential information via a simple client-side script. In this paper, I will discuss how easy cross-site tracing could effect an organization and how an organization can protect itself from this type of attack.
Read the Article
|
Exploiting BlackICE When a Security Product has a security flaw
This paper was written to fulfill one part of the requirements of GCIH certification and present recently published and brand new details of a remarkable vulnerability to improve the state of practice of information security. It contains a fictional story about a computer expert who gets into evil ways and tries to denigrate his ex-colleague at her new workplace. I use some fake and test screenshots and test text outputs to illustrate this story. Furthermore I used semi-masked IP addresses to avoid coincidences with real addresses. However all of the attack methods are real. This paper covers a very detailed description of the exploitation of a security flaw in the Protocol Analysis Module (PAM) of Internet Security Systems' (ISS) software products from the initial phase (reconnaissance, scanning) to the end (incident handling).
Read the Article
|
Googling Up Passwords
I'm not putting down Google. Far from it: it's a great search engine, and I use it all the time. I couldn't do my many jobs without Google, so I've spent some time learning how to maximize its value, how to find exactly what I want, how to plumb its depths to find just the right nugget of information that I need. In the same way that Google can be used for good, though, it can also be used by malevolent individuals to root out vulnerabilities, discover passwords and other sensitive data, and in general find out way more about systems than they need to know. And, of course, Google's not the only game in town -- but it is certainly the biggest, the most widely-used, and in many ways the easiest to use.
Read the Article
|
|
|
Page: 1 2 3 4 5 6 7 8
Members currently browsing this category:
|
|
