__RESEARCH
__Exploits & __Vulns
- ProFTPD 1.3.0/1.3.0a mod_ctrls Buffer Overflow
(2.6.x Linux Kernel with canary and Compat VDSO)
- ProFTPD 1.3.0/1.3.0a mod_ctrls Buffer Overflow
(2.4.x Linux Kernel without canary)
- OS X BOM Privilege Escalation
- Lotus Domino 5.0.8 WebMail Users Enumeration
- Login Window Format String
"A format string issue in Login Window's handling of application names may lead to an unexpected application termination or arbitrary code execution"
__Papers
- The new iBotnet
While reversing the recent Mac botnet (~Feb 09) we (Me and my friend Mario) decided to write this article exposing the botnet internals [subscribers only - VB]
- Mac OS X Dialog Box Spoofing—Believe Me, I’m System Preferences
This is an article I wrote a while ago about performing authentication dialog spoofing in order to obtain root password on MacOS. This is all possible thanks to the Authorization Services
- OS X Rootkits: The Next Level
I held this presentation about MacOS X Rootkits a while ago at MOCA 2008 and LaCon 2008 in order to show the latest techniques that can be used by a rootkit for working in kernel-space up to the user-space
- OS X B[O]OM Privilege Escalation
Deep focus on the latest MoAB advisories related to the BOM files permission vuln
[026672] visits so far