what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 11 of 11 RSS Feed

Files from Gynvael Coldwind

Email addressgynvael at vexillium.org
First Active2007-08-21
Last Active2011-01-12
Exploiting The Otherwise Non-Exploitable
Posted Jan 12, 2011
Authored by Gynvael Coldwind, Matthew Jurczyk

Whitepaper called Exploiting the otherwise non-exploitable - Windows Kernel-mode GS Cookies subverted.

tags | paper, kernel
systems | windows
SHA-256 | 9cb55c04b174ac68214accb5e07ace84657f40f962aea69afc09f7ac5daa6f55
Download | Favorite | View
GDT And LDT In Windows Kernel Vulnerability Exploitation
Posted Jan 18, 2010
Authored by Gynvael Coldwind, Matthew Jurczyk

Whitepaper called GDT and LDT in Windows kernel vulnerability exploit. This paper discusses using 1 or 4 byte write-what-where conditions to convert a custom Data-Segment Descriptor entry in LDT of a process into a Call-Gate (with DPL set to 3 and RPL to 0).

tags | paper, kernel
systems | windows
SHA-256 | 5c8da344b3b6b9b298c6abf88c6abc9b8388ea7855997e8d22f4bdd058f0fb20
Download | Favorite | View
firefox20011bmp-dos.txt
Posted Feb 18, 2008
Authored by Gynvael Coldwind

Opera version 9.50 beta and FireFox versions 2.0.0.11 suffer from a vulnerability during BMP file handling.

tags | advisory, denial of service
SHA-256 | 0fd7ba70c6bbc35bddaa4373858635fd6aa10424df74190fbc8037207d7c3efa
Download | Favorite | View
sdl-overflow.txt
Posted Jan 24, 2008
Authored by Gynvael Coldwind

SDL_Image versions 1.2.6 and below suffer from a GIF handling buffer overflow vulnerability.

tags | advisory, overflow
SHA-256 | 013e44ffbd053ccc714332adb0917f693c76ce4e1a1854c18fcc279af2d8b8e3
Download | Favorite | View
opera9-dos.txt
Posted Dec 6, 2007
Authored by Gynvael Coldwind

Opera is vulnerable to a remote denial of service attack, using specially crafted BMP files, that causes the browser to freeze for a short amount of time (around 4 minutes on fast computer).

tags | advisory, remote, denial of service
SHA-256 | 93b879e9a06d7e933fad2efbb0ff9f866107dcf04c983da9154afa99bd7a2b12
Download | Favorite | View
magellan-traverse.txt
Posted Sep 7, 2007
Authored by Gynvael Coldwind

Magellan Explorer version 3.32 build 305 suffers from a remote directory traversal vulnerability. Proof of concept code included.

tags | exploit, remote, proof of concept, file inclusion
SHA-256 | e310a478305527fa2aa12b4bb1abf80a9eb24ad2d2f92d8240de3aa598e25bc6
Download | Favorite | View
xdiesel-traverse.txt
Posted Sep 7, 2007
Authored by Gynvael Coldwind

X-Diesel Unreal Commander version 0.92 suffers from a remote directory traversal vulnerability. Proof of concept code included.

tags | exploit, remote, proof of concept, file inclusion
SHA-256 | 5870174e59874a1e138c04a3fec453157f93e9da0d787391dcc503796e5d699d
Download | Favorite | View
tc701-traverse.txt
Posted Sep 7, 2007
Authored by Gynvael Coldwind

The Total Commander FTP client versions 7.01 and below suffer from a remote directory traversal vulnerability. Proof of concept code included.

tags | exploit, remote, proof of concept, file inclusion
SHA-256 | a7ea0b06af33c34252186cbffb41cb9f7c141a2e1b54c2551be1be4462e60615
Download | Favorite | View
blizzard-dos.txt
Posted Aug 30, 2007
Authored by Gynvael Coldwind

Blizzard StarCraft Brood War version 1.15.1 suffers from a remote denial of service vulnerability.

tags | exploit, remote, denial of service
SHA-256 | 32a78f48606c7a8339245472c40865d4197517ce3a37de6dcb1e758a0288ee14
Download | Favorite | View
hispasec-unreal.txt
Posted Aug 24, 2007
Authored by Gynvael Coldwind | Site blog.hispasec.com

HISPASEC Security Advisory - X-Diesel Unreal Commander version 0.92 suffers from name spoofing and directory traversal vulnerabilities.

tags | advisory, spoof, vulnerability
SHA-256 | 4b6405903518d8cc539aa225d0ae78b40266ba8b21b84f35ab602aeb57c85e05
Download | Favorite | View
fileinfo-multi.txt
Posted Aug 21, 2007
Authored by Gynvael Coldwind

Fileinfo version 2.0.9, the lister plugin for Total Commander, suffers from input validation vulnerabilities. Prior versions may also be affected.

tags | advisory, vulnerability
SHA-256 | 9d82d6a7ac76205b121501b2e861c7404be7d611bcf04e454a41d9906704b47f
Download | Favorite | View
Page 1 of 1
Back1Next

File Archive:

June 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    0 Files
  • 2
    Jun 2nd
    0 Files
  • 3
    Jun 3rd
    18 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    0 Files
  • 7
    Jun 7th
    0 Files
  • 8
    Jun 8th
    0 Files
  • 9
    Jun 9th
    0 Files
  • 10
    Jun 10th
    0 Files
  • 11
    Jun 11th
    0 Files
  • 12
    Jun 12th
    0 Files
  • 13
    Jun 13th
    0 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close