Ori Nimron

@orinimron123

Vulnerability Researcher

Vrijeme pridruživanja: kolovoz 2017.

Tweetovi

Blokirali ste korisnika/cu @orinimron123

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @orinimron123

  1. Prikvačeni tweet
    1. lis 2019.

    My first Linux Kernel vulnerabilities: Various network modules didn't enforce CAP_NET_RAW, which means that unprivileged users could create a raw socket. CVE-2019-17052 AF_AX25 CVE-2019-17053 AF_IEEE802154 CVE-2019-17054 AF_APPLETALK CVE-2019-17055 AF_ISDN CVE-2019-17056 AF_NFC

    Poništi
  2. proslijedio/la je Tweet
    5. lis 2019.

    doesn't seem like ubuntu 4.4 LTS kernels want to pull the upstream patch. can still rip <-- 0 with syscall(__NR_clock_gettime, 10, 0)

    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    2. lis 2019.

    How a double-free bug in WhatsApp turns to RCE --

    Prikaži ovu nit
    Poništi
  4. 30. ruj 2019.

    Vulnerability details continued: So we can trigger it by calling D3DKMTQueryAdapterInfo of type 'KMTQAITYPE_NODEPERFDATA' and the guest will crash. Microsoft has acknowledged the vulnerability but said that they will not fix the issue, So I am disclosing it publicly. 3/3.

    Prikaži ovu nit
    Poništi
  5. 30. ruj 2019.

    Vulnerability details: Windows doesn't populate a pointer for WDDM versions under 1.3 in their internal dxgkrnl adapter/renderer structure, and later uses that pointer in dxgkrnl!DXGADAPTER::GetNodePerfData without checking if it is valid. 2/n

    Prikaži ovu nit
    Poništi
  6. 30. ruj 2019.

    I've found & reported about a Null Pointer Dereference vulnerability in Windows 10 Kernel that runs inside VMware & VirtualBox as a guest to Microsoft. PoC : 1/n

    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    17. ruj 2019.

    We've just released the code for the WinDBG Plugin by our team member Artem Shishkin () presented at ()

    Poništi
  8. proslijedio/la je Tweet
    4. ruj 2019.

    I found a Kernel write-what-where/LPE in Qualcomm driver for Windows. Apparently Qualcomm had a fix but it wasn't distributed through latest driver update means.

    Poništi
  9. proslijedio/la je Tweet
    26. kol 2019.

    thanks to slab accounting enabled on a certain cache, a previously non-exploitable bug is now 95+% reliable =)

    Poništi
  10. proslijedio/la je Tweet
    24. kol 2019.

    The first version of my new plugin (Windbg2IDA) is released. Using this plugin, you’ll be able to dump each step in Windbg then see the code coverage results in IDA, you can also compare two or more dumps w/ different colors & lots of other cool features.

    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet
    17. kol 2019.

    Finally a crash in kernel PE Loader by a malformed PE header.

    Poništi
  12. 13. kol 2019.

    Found a buffer overflow in a popular antivirus driver. It's funny that the program that should protect you from threats is the one that exposes your system😉. (Exploited on Windows 10 RS4 from medium integrity)

    Poništi
  13. proslijedio/la je Tweet
    22. srp 2019.

    Here's a Sandbox Escape + Local Privilege Escalation found I found in Comodo Antivirus (CVE-2019–3969). Features signed binary bypass, crashing services, and some COM.

    Poništi
  14. proslijedio/la je Tweet
    21. svi 2019.

    We are glad to help reach 1,000,000$ USD in their total bounties paid. Looking forward to the next 1,000,000$ USD 😉 We will release more information as soon as the disclosure embargo is over.

    Poništi
  15. proslijedio/la je Tweet
    18. tra 2019.

    Category: Mobile Target: Android Samsung Galaxy A8 Type of Vulnerability: Kernel PE Prize: 50,000$ USD For more information contact info@typhooncon.com

    Poništi
  16. proslijedio/la je Tweet
    15. tra 2019.

    CVE-2019-9730: Local privilege elevation in Synaptics Sound Device Driver package. Multiple OEMs affected. Exploit and write-up here: .

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·