Skip to main content

CVE-2018-8121 – NT infoleak

I have not written for a long time… It’s nothing new, but it made me want to write something for the blog. I was reading the 44con’s talk: “Subverting Direct X KernelFor Gaining Remote System”[1] And I said myself, I’ll try to do the infoleak, CVE-2018-8121[2]. CVE-2018-8121 The infoleak consists in get uninitialized memory in […]

VolgaCTF 2017 – time_is

I solved this challenge with my teammate @javierprtd. Category: Exploiting. Points: 150. Binary: time_is. By executing the binary, we can see.

Well, format string vulnerability found The binary read from stdin using __getlimit function, and the unique limiter is ‘\n’.

The __printf_chk function is used for printing in stdout and checking if the […]

XiomaraCTF 2017 – mint

In this challenge debugging was unneccesary . If I execute it, this is the output:

We can add a text, edit and show it. The vulnerability So, I add a text, the max length is 0x30, but if edit the text, there are two options:

When I choose the first option, we can […]

FwhibbitCTF 2017 – Bomb

Category: Reversing. Points: 450. We need an 8 digits code to disable the bomb. That code is used to operate with two arrays of bytes. Any mistake will make the bomb to explode.

My solution is below: The code is 8 digits long, every digit goes from 0 to 9, that code is used to operate with […]