Broken, Abandoned, and Forgotten Code, Part 9

[Zach C <uid000 () gmail com>]

Part 9 of Broken, Abandoned, and Forgotten Code is up! In this part,
we fill out the ambit firmware header enough to satisfy upnpd's loose
validation and have it write the image to flash. Additionally, we have
to binary patch upnpd to get it to play nicely in QEMU, since there's
no physical flash memory in the emulator.

Here's the link to part 9:
http://shadow-file.blogspot.com/2015/06/abandoned-part-09.html

Here was a mid-term summary post a couple of weeks ago to help
newcomers get caught up.
http://shadow-file.blogspot.com/2015/06/abandoned-intermission.html

If you missed my post to Full Disclosure where I introduced the
series, here's that:
http://seclists.org/fulldisclosure/2015/May/44

As always I welcome feedback via email or Twitter. I'm @zcutlip.

I hope you enjoy it!

Cheers,
Zach

-- 
:wq!

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/