Dailydave mailing list archives

Previous By Date Next
Previous By Thread Next

XFS Byte Swapping Fun

From: Dave Aitel <dave () immunityinc com>
Date: Wed, 03 Oct 2007 09:31:48 -0400
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602

So we got X86 Solaris support into MOSDEF just in time - this morning
I noticed that iDefense's Sean Larsson has released an advisory on
XFS. We've put a working remote exploit for Solaris into CANVAS Early
Updates[1]. Good default anonymous remotes don't come out every day.
Solaris is still all over the place so this sort of thing is quite
interesting.

With a fairly different bug like this one, it's always fun to see how
everyone else exploits the byte-swapping primitive. Sinan Eren's way
of doing it is cool, but I certainly never would have thought of it.

- -dave

[1] http://www.immunityinc.com/products-early_updates.shtml - 9K per
quarter - that's about one dollar a Solaris box if you do enough
pen-tests!  :>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHA5nDtehAhL0gheoRAjiJAJ9i59lkvJbjIKUKhZN7Qae0iFbLCgCfWIhb
sjCEtziVBmH+LGL/niUJ6xw=
=faNC
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave
Previous By Date Next
Previous By Thread Next

Current thread: