Patroklos Argyroudis
ld-linuxv.so.1 rootkit
- incident
- ld-linuxvso1
- linux
- rootkit
Yesterday I helped my friend kargig to analyse a rootkit he has recovered from a compromised Linux system. You can find the complete write-up at his blog.
Read more
gif2png command line buffer overflow
Patroklos Argyroudis
A stack‑based buffer overflow in gif2png (versions 2.5.1 and earlier) allows attackers to overwrite memory by supplying an overly long filename on the command line. Because the program uses an unsafe strcpy() into a fixed‑size buffer, crafted input can cause a crash or potentially enable remote code execution when...
- advisories
- cgi
- buffer overflow
- vulnerability
- research
CVE-2008-3531: FreeBSD kernel stack overflow exploit development
Patroklos Argyroudis
About four months ago I developed a reliable exploit for vulnerability CVE-2008-3531, which is also addressed in the advisory FreeBSD-SA-08:08.nmount. In this post I will use this vulnerability to provide an overview of the development process for FreeBSD kernel stack exploits.
- freebsd
- kernel
- research
- vulnerability