dividead.wordpress.com
Dividead's Blog | Just another WordPress.com weblogJust another WordPress.com weblog
http://dividead.wordpress.com/
Just another WordPress.com weblog
http://dividead.wordpress.com/
TODAY'S RATING
>1,000,000
Date Range
HIGHEST TRAFFIC ON
Saturday
LOAD TIME
0.2 seconds
16x16
32x32
PAGES IN
THIS WEBSITE
4
SSL
EXTERNAL LINKS
15
SITE IP
192.0.78.13
LOAD TIME
0.201 sec
SCORE
6.2
Dividead's Blog | Just another WordPress.com weblog | dividead.wordpress.com Reviews
https://dividead.wordpress.com
Just another WordPress.com weblog
dividead.wordpress.com
glibc timezone integer overflow | Dividead's Blog
https://dividead.wordpress.com/2009/06/01/glibc-timezone-integer-overflow
Just another WordPress.com weblog. Glibc timezone integer overflow. Posted by dividead in Security. Udrepper is a goon. Years ago I found a cute integer overflow in the timezone handling in glibc, but back then I put it on my list of ‘bugs to check out in the future if I have more time’. Of course I never found this time (the density of my blog updates gives a nice impression of my spare time), but was surprised that the problem still exists in recent versions of glibc. Stst size - (ftello (f) num transi...
Blocking between execution and main() | Dividead's Blog
https://dividead.wordpress.com/2009/07/21/blocking-between-execution-and-main
Just another WordPress.com weblog. Blocking between execution and main(). Posted by dividead in Security. Recently http:/ blog.cr0.org/2009/07/old-school-local-root-vulnerability-in.html. Was brought to my attention, and I having a bit of spare time on my hands, I decided to investigate a casual remark Tinnes made about forcing a process to block after being executed but before reaching the main() function. In case of the pulseaudio flaw this is useful to exploit the race-condition reliably. Now that we ...
Ramblings on static deobfuscation | Dividead's Blog
https://dividead.wordpress.com/2009/03/06/ramblings-on-static-deobfuscation
Just another WordPress.com weblog. Ramblings on static deobfuscation. Posted by dividead in Reverse engineering. The past few days while not at work I have been thinking a bit about binary deobfuscation, as I’m spending some of my spare time cracking an obfuscated binary. The anti-disassembly and anti-debugging tricks used in this binary are fairly extensive, ranging from jmps in the middle of instructions (why does this still throw IDA pro off guard this much? Xchg eax, edx xchg eax, edx. Obviously this...
NUMA and ASLR | Dividead's Blog
https://dividead.wordpress.com/2009/08/28/numa-and-aslr
Just another WordPress.com weblog. Posted by dividead in Uncategorized. In the same link as mentioned in my previous post Tinnes hinted at interesting things to be done with NUMA having CAP SYS NICE through, say, pulseaudio. When checking out the NUMA code in the Linux kernel I found the following interesting case in the move pages() systemcall defined in mm/migrate.c and meant to move pages between NUMA nodes, but also query the status of pages. Tcred- suid & cred- euid! Tcred- uid & cred- uid! Dividead...
TOTAL PAGES IN THIS WEBSITE
4
C Quiz No. 1 | xorl %eax, %eax
https://xorl.wordpress.com/2009/01/27/c-quiz-no-1
Xorl %eax, %eax. C Quiz No. 1. This is a new category that I’m starting. You’re all welcome to express your ideas for the behavior of the programs. The first one is going to be really easy one. So. I have this nice prog.:. Include stdio.h int main(void) { int *c; c = (int [4]){1,*c,3}; printf(%d n, c[3]); return 0; }. But why do I get this output when I’m running it? Sh-31$ gcc quiz1.c -std=c99 -pedantic -Wall -o quiz1 sh-3.1$ ./quiz1 0 sh-3.1$. January 27, 2009 at 15:30. Posted in C programming. This me...
CVE-2013-1798: Linux kernel KVM IOAPIC_REG_SELECT Invalid Memory Access | xorl %eax, %eax
https://xorl.wordpress.com/2013/05/23/cve-2013-1798-linux-kernel-kvm-ioapic_reg_select-invalid-memory-access
Xorl %eax, %eax. CVE-2013-1798: Linux kernel KVM IOAPIC REG SELECT Invalid Memory Access. Leave a comment ». This was very nice vulnerability reported by Andrew Honig of Google. The bug is triggered when a user specifies an invalid IOAPIC REG SELECT value which is reachable via read KVM I/O device operation as you can see below. Additionally, if a user makes a read by invoking IOAPIC REG WINDOW it will result in calling ioapic read indirect(). Here is what this function does. And this is because it is ar...
About | xorl %eax, %eax
https://xorl.wordpress.com/about
Xorl %eax, %eax. Another random blogger from Greece. For anything you may need you can contact me via email at: xorl. January 1, 2009 at 07:03. Gera’s insecure programming (5). Motorcycles and cars (14). Raptor’s wargames (2). Track of the Day. Καλά, δεν έχω παράπονο. 3 years ago. Exploiting Samsung Galaxy S4 secure boot: blog.azimuthsecurity.com/2013/05/exploi. Thank you for writing all these books! That might help you. 3 years ago. Άντε καλή τύχη και επιτυχία γειτόνισσα! Send to Email Address.
CVE-2013-1796: Linux kernel KVM MSR_KVM_SYSTEM_TIME Buffer Overflow | xorl %eax, %eax
https://xorl.wordpress.com/2013/05/22/cve-2013-1796-linux-kernel-kvm-msr_kvm_system_time-buffer-overflow
Xorl %eax, %eax. CVE-2013-1796: Linux kernel KVM MSR KVM SYSTEM TIME Buffer Overflow. Leave a comment ». This is a really nice vulnerability killed by Andy Honig. It is particularly interesting because it allows host kernel memory corruption through guest GPA (Guest Physical Address) manipulation. If we have a look in arch/x86/kvm/x86.c we can see the following code. So by utilizing the ‘MSR KVM SYSTEM TIME’ kvmclock MSR a user can set ‘vcpu- arch.time page’ through gfn to pag...The arbitrary write occur...
xorl %eax, %eax | Page 2
https://xorl.wordpress.com/page/2
Xorl %eax, %eax. CVE-2013-1774: Linux kernel Edgeport USB Serial Converter NULL Pointer Dereference. Leave a comment ». This is a vulnerability fixed by Wolfgang Frisch and the buggy code resides in drivers/usb/serial/io ti.c as you can see below. Unsigned long flags; if (! Tty) return; if (! May 18, 2013 at 16:14. CVE-2013-1819: Linux kernel XFS xfs buf find() NULL Pointer Dereference. First of all, the xfs addr to agno() C macro is the following as defined in fs/xfs/xfs mount.h header file. As Dave Chi...
CVE-2013-3228: Linux kernel IrDA Information Leak | xorl %eax, %eax
https://xorl.wordpress.com/2013/05/26/cve-2013-3228-linux-kernel-irda-information-leak
Xorl %eax, %eax. CVE-2013-3228: Linux kernel IrDA Information Leak. This is another simple kernel memory information leak fixed by Mathias Krauss. Here is the exact code where this bug is located in net/irda/af irda.c code. This is a command which is defined as shown below. And the fix was to add the missing initialization. IRDA DEBUG(4, %s() n, func ); msg- msg namelen = 0; skb = skb recv datagram(sk, flags and MSG DONTWAIT, flags and MSG DONTWAIT, &err);. May 26, 2013 at 14:18. What’s missing in ...
C Quiz No. 2 | xorl %eax, %eax
https://xorl.wordpress.com/2013/05/18/c-quiz-no-2
Xorl %eax, %eax. C Quiz No. 2. Continuing from the first one. Back in 2009, here is another that a friend of mine send me yesterday. The concept is that you are free to put whatever you want in do your stuff() in order to make it print “win” from function do my stuff(). N); else printf(fail n); return; } int main(void) { do your stuff(); do my stuff(); return 0; }. Instantly I came up with a quite simple solution that exploits the concept of uninitialized stack that it’s being used. Which it works….
Track of the Day | xorl %eax, %eax
https://xorl.wordpress.com/track-of-the-day
Xorl %eax, %eax. Track of the Day. I started this as a fun thing to do on twitter. Simply posting a music track I personally like every day. It turns out it’s more fun than I was expecting so this page is an archive of the tracks I’ve posted so far. I might not update this page on a daily basis so don’t be surprised if the latest “track of the day” tracks are missing. :). 24Oct2010 : Dream On by Aerosmith from Aerosmith (1973). 26Oct2010 : Psycho Killer by Talking Heads from TALKING HEADS: 77 (1977).
CVE-2013-2007: QEMU Guest Agent Insecure File Permissions | xorl %eax, %eax
https://xorl.wordpress.com/2013/05/26/cve-2013-2007-qemu-guest-agent-insecure-file-permissions
Xorl %eax, %eax. CVE-2013-2007: QEMU Guest Agent Insecure File Permissions. Leave a comment ». This vulnerability was reported by Laszlo Ersek of Red Hat and it allows guest privilege escalation when started in daemon mode. As he mentioned. QEMU guest agent creates files with incorrect file permissions. Specifically, at least the files that are affected are the ones created with ‘guest-file-open’ QMP command, shell output redirection, or when invoked by the fsfreeze script. NULL & strcmp(*form, mode str)!
CVE-2013-1848: Linux kernel EXT3 ext3_msg() Format String | xorl %eax, %eax
https://xorl.wordpress.com/2013/05/21/cve-2013-1848-linux-kernel-ext3-ext3_msg-format-string
Xorl %eax, %eax. CVE-2013-1848: Linux kernel EXT3 ext3 msg() Format String. Leave a comment ». Recently Lars-Peter Clausen committed a change on Linux kernel that fixes a format string vulnerability in the EXT3 filesystem code. The susceptible code resides in fs/ext3/super.c but to better understand it we need to have a look on how ext3 msg() is defined first. So, it should be called passing the following three mandatory arguments:. 8211; Pointer to the super-block structure. 8211; Prefix string. The fix...
TOTAL LINKS TO THIS WEBSITE
15
高雄市電腦商業同業公會
敬邀參加10月26日(三) 運用社群力量 提昇品牌形象 講座. 電話:(07)535-2090 傳真:(07)536-3742 上班時間:週一 週五 早上8:30至下午17:30 中午12:00 1:00午休 國定例假日休息.
縮減產業數位落差計劃-高雄市電腦商業同業公會開運團
Dividea Infinity | Freelancer Designer
One Stop Affordable Web Design Provider Design Develop Deploy. Kami sedia memberi khidmat dan nasihat untuk meningkatkan mutu penyampaian laman web. Kami sedia mereka bentuk logo yang bersesuaian dengan jenis perniagaan dan objektif syarikat anda. Perkhidmatan rekabentuk grafik seperti brochure, banner, bunting dan sebagainya turut disediakan. Rekabentuk yang terkini menyakinkan dan menarik akan menyakinkan pelanggan anda untuk berurusan. Rekabentuk and Develop Laman web. Rekabentuk kreatif dan grafik.
DiviDead.com is for Sale! @ DomainMarket.com, Maximize Your Brand Recognition with a Premium Domain
Ask About Special March Deals! What Are the Advantages of a Super Premium .Com Domain? 1 in Premium Domains. 300,000 of the World's Best .Com Domains. Available For Immediate Purchase. Safe and Secure Transactions. 24/7 Customer Support: 888-694-6735. Search For a Premium Domain. Or Click Here To Get Your Own Domains Appraised. Find more domains similar to DiviDead.com. We are constantly expanding our inventory to give you the best domains available for purchase! Domains Added in the Past Month. That wou...
dividead (Chung) | DeviantArt
Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')". Deviant for 15 Years. This deviant's full pageview. Last Visit: 157 weeks ago. This is the place where you can personalize your profile! By moving, adding and personalizing widgets. You can drag and drop to rearrange. You can edit widgets to customize them. The bottom has widgets you can add! Some widgets you can only access when you get Core Membership.
Dividead's Blog | Just another WordPress.com weblog
Just another WordPress.com weblog. Posted by dividead in Uncategorized. 1 comment so far. In the same link as mentioned in my previous post Tinnes hinted at interesting things to be done with NUMA having CAP SYS NICE through, say, pulseaudio. When checking out the NUMA code in the Linux kernel I found the following interesting case in the move pages() systemcall defined in mm/migrate.c and meant to move pages between NUMA nodes, but also query the status of pages. Tcred- suid & cred- euid! Dividead 2009 ...
Price Request - BuyDomains
Url=' escape(document.location.href) , 'Chat367233609785093432', 'toolbar=0,scrollbars=0,location=0,statusbar=0,menubar=0,resizable=0,width=640,height=500');return false;". Need a price instantly? Just give us a call. Toll Free in the U.S. We can give you the price over the phone, help you with the purchase process, and answer any questions. Get a price in less than 24 hours. Fill out the form below. One of our domain experts will have a price to you within 24 business hours. United States of America.
Divide America
I am no longer proud of our country. I am proud of only half of our country. On November 6, 2012, the majority of our electorate voted to reward another four years of the office of the Presidency to a man who had already overseen, prolonged and worsened, four years of the worst economic times since the Great Depression. A man who had promised to improve every mentionable aspect of our economy, but instead did literally and measurably the opposite. Can, not what their government tells. Them they can - sho...
Divideamong.com
FL Fishing Charters | Florida Fishing Charter Captains
Plan Your Perfect Charter. Choose Your Charter Preferences. After you've chosen your preferences click the days in the calendar you'd like to fish. Anchors represent interested anglers within 40 miles of your specified zip code.
Divide and Conker | Divide and Conker
By Divide and Conker. Includes unlimited streaming via the free Bandcamp app, plus high-quality download in MP3, FLAC and more. All in the Mind. Cutting Corners (feat. Fabian Schomerus and Matthew Clare). These People Are Sick (skit). Wife (Is for Life). Released December 30, 2016. Dean Marroni: rap and lead vocals. Jack Wingad: rap, lead and backing vocals and guitar. Adam Woods: bass guitar. Jonathan Vince: tenor saxophone. Charlie Burns: drums and backing vocals. Contact Divide and Conker.
