Archive for the ‘exploit’ Category

Exploits for Kaminsky’s DNS Cache Poisoning Flaw

July 23, 2008

I patched the second Kaminsky told us all to ~15 days ago… did you?

CAU-EX-2008-0002

CAU-EX-2008-0003

Metasploit blog post about these exploits.

Advertisements

CAU-EX-2008-0001: Solaris ypupdated Command Execution

April 4, 2008

Metasploitized version of a recent Solaris rpc.ypupdated exploit from milw0rm:

http://www.caughq.org/exploits/CAU-EX-2008-0001.txt

Context-keyed Payload Encoding Whitepaper

January 28, 2008

Today, my research paper entitled “Context-keyed Payload Encoding” was published in Uninformed Journal vol. 9. If you’re into exploitation technology, you should check it out. This is the research I presented at ToorCon 9 last October.

New OS-X Race Condition Exploit by intropy

June 13, 2005

Mac OS X 10.4 launchd Race Condition Exploit
http://www.caughq.org/exploits/CAU-EX-2005-0004.txt

3 New AIX Local Root Exploits by intropy

June 8, 2005

IBM AIX paginit Local Elevated Privileges Exploit
http://www.caughq.org/exploits/CAU-EX-2005-0001.txt

IBM AIX ipl_varyon Local Elevated Privileges Exploit
http://www.caughq.org/exploits/CAU-EX-2005-0002.txt

IBM AIX netpmon Local Elevated Privileges Exploit
http://www.caughq.org/exploits/CAU-EX-2005-0003.txt