Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

dailydave logo Dailydave mailing list archives

XFS Byte Swapping Fun
From: Dave Aitel <dave () immunityinc com>
Date: Wed, 03 Oct 2007 09:31:48 -0400
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602

So we got X86 Solaris support into MOSDEF just in time - this morning
I noticed that iDefense's Sean Larsson has released an advisory on
XFS. We've put a working remote exploit for Solaris into CANVAS Early
Updates[1]. Good default anonymous remotes don't come out every day.
Solaris is still all over the place so this sort of thing is quite
interesting.

With a fairly different bug like this one, it's always fun to see how
everyone else exploits the byte-swapping primitive. Sinan Eren's way
of doing it is cool, but I certainly never would have thought of it.

- -dave

[1] http://www.immunityinc.com/products-early_updates.shtml - 9K per
quarter - that's about one dollar a Solaris box if you do enough
pen-tests!  :>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHA5nDtehAhL0gheoRAjiJAJ9i59lkvJbjIKUKhZN7Qae0iFbLCgCfWIhb
sjCEtziVBmH+LGL/niUJ6xw=
=faNC
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

  By Date           By Thread  

Current thread:
  • XFS Byte Swapping Fun Dave Aitel (Oct 03)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]