Posted by scriptjunkie in Exploits, Metasploit on June 28, 2011
[I found some old posts lurking around my hard drive from a few months ago. This is no longer the newest or best Firefox exploit, but you might find it interesting] To learn a little bit more about exploit development and RE I took a look at the latest Firefox exploit in exploit-db ( http://www.exploit-db.com/exploits/15352/); […]
ASLR, DEP, dll, exploit, exploit-db, firefox, Metasploit, Nobel, Peace Prize, retslide, reverse engineering, rop, stack pivot
Posted by scriptjunkie in Exploits on March 1, 2011
As the recent exploits for IE using the .NET 2.0 DLL demonstrate, sometimes a non-ASLR DLL to enable an exploit is just a LoadLibrary away. So if pvefindaddr won’t give you any ASLR-free DLL’s in memory, look for other DLL’s which the process will load, given the right input. Or from a system-hardening or development […]
ASLR, DEP, DYNAMIC_BASE, EMET, exploit, find, NX_COMPAT, pefinder
Fusion theme by digitalnature | powered by WordPress
Entries (RSS) and Comments (RSS) ^