Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @orinimron123
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @orinimron123
-
Prikvačeni tweet
My first Linux Kernel vulnerabilities: Various network modules didn't enforce CAP_NET_RAW, which means that unprivileged users could create a raw socket. CVE-2019-17052 AF_AX25 CVE-2019-17053 AF_IEEE802154 CVE-2019-17054 AF_APPLETALK CVE-2019-17055 AF_ISDN CVE-2019-17056 AF_NFCpic.twitter.com/qmezFx5Qjj
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
doesn't seem like ubuntu 4.4 LTS kernels want to pull the upstream patch. can still rip <-- 0 with syscall(__NR_clock_gettime, 10, 0)pic.twitter.com/SBceR9K20Y
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
How a double-free bug in WhatsApp turns to RCE --https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Vulnerability details continued: So we can trigger it by calling D3DKMTQueryAdapterInfo of type 'KMTQAITYPE_NODEPERFDATA' and the guest will crash. Microsoft has acknowledged the vulnerability but said that they will not fix the issue, So I am disclosing it publicly. 3/3.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Vulnerability details: Windows doesn't populate a pointer for WDDM versions under 1.3 in their internal dxgkrnl adapter/renderer structure, and later uses that pointer in dxgkrnl!DXGADAPTER::GetNodePerfData without checking if it is valid. 2/n
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I've found & reported about a Null Pointer Dereference vulnerability in Windows 10 Kernel that runs inside VMware & VirtualBox as a guest to Microsoft. PoC : https://github.com/orinimron123/Public-Vulnerabilities/tree/master/Microsoft%20dxgkrnl.sys%20Null%20Pointer%20Dereference … 1/npic.twitter.com/OUxvLU3N65
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
We've just released the code for the WinDBG Plugin by our team member Artem Shishkin (
@honorary_bot) presented at#H2HC2018 (@h2hconference) https://bit.ly/smaptrace#WeAreSTORM@IntelSTORMTeamHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
I found a Kernel write-what-where/LPE in Qualcomm driver for Windows. Apparently Qualcomm had a fix but it wasn't distributed through latest driver update means.https://medium.com/tenable-techblog/kernel-write-what-where-in-qualcomm-driver-lpe-f08389f6fce9 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
thanks to slab accounting enabled on a certain cache, a previously non-exploitable bug is now 95+% reliable =)pic.twitter.com/v9ruM8423W
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
The first version of my new plugin (Windbg2IDA) is released. Using this plugin, you’ll be able to dump each step in Windbg then see the code coverage results in IDA, you can also compare two or more dumps w/ different colors & lots of other cool features. https://windbg2ida.ntdebug.com pic.twitter.com/QOnsqYRrTF
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
Finally a crash in kernel PE Loader by a malformed PE header.pic.twitter.com/r71pnCCg5u
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Found a buffer overflow in a popular antivirus driver. It's funny that the program that should protect you from threats is the one that exposes your system
.
(Exploited on Windows 10 RS4 from medium integrity)pic.twitter.com/ES4lqPERAAHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
Here's a Sandbox Escape + Local Privilege Escalation found I found in Comodo Antivirus (CVE-2019–3969). Features signed binary bypass, crashing services, and some COM. https://medium.com/tenable-techblog/comodo-from-sandbox-to-system-cve-2019-3969-b6a34cc85e67 …pic.twitter.com/u3svAlfdM0
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
We are glad to help
@Intel reach 1,000,000$ USD in their total bounties paid. Looking forward to the next 1,000,000$ USD
We will release more information as soon as the disclosure embargo is over.pic.twitter.com/1PomQhc66d
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
#TyphoonPwn Category: Mobile Target: Android Samsung Galaxy A8 Type of Vulnerability: Kernel PE Prize: 50,000$ USD For more information contact info@typhooncon.com http://typhooncon.com/typhoonpwn/ pic.twitter.com/XsokFvrUdp
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ori Nimron proslijedio/la je Tweet
CVE-2019-9730: Local privilege elevation in Synaptics Sound Device Driver package. Multiple OEMs affected. Exploit and write-up here: http://jackson-t.ca/synaptics-cxutilsvc-lpe.html ….pic.twitter.com/R6NmPG370G
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.