RSS Feed
Articles
-
FireShell ctf 2020 The Return of the Side Effect writeup
It’s a ctf challenge, the same bug as ZDI post INVERTING YOUR ASSUMPTIONS: A GUIDE TO JIT COMPARISONS, but pathed in a new version of jsc. It’s a
side effect
bug withCompareEq
opcode. I used to try to learn aboutCheckStructure Elimination
by debugging this bug, but was stucked for the reason that i couldn’t find the corresponding commit. I take this opportunity to learn aboutCheckStructure Elimination
by analyzing this vulnerability. -
qemu-pwn cve-2019-6788堆溢出漏洞分析
漏洞描述
-
qemu-pwn-cve-2015-7504堆溢出漏洞分析
cve-2015-7504是pcnet网卡中的一个堆溢出漏洞,可以溢出四字节,通过构造特定的数据可以劫持程序执行流,结合前面的cve-2015-5165中的信息泄露,便可以实现任意代码执行。
-
qemu-pwn-cve-2015-5165信息泄露漏洞分析
CVE-2015-5165及CVE-2015-7504,很经典的一个qemu逃逸漏洞,想通过它来学习qemu的cve。篇幅的原因,先分析CVE-2015-5165。
-
browser-pwn cve-2020-6418漏洞分析
基础知识 – Pointer compression