by Julien Ahrens | Thursday, March 13, 2014 | Advisory, Exploit
I’ve discovered another 0day Remote Code Execution flaw in a CNET.com Top10 software of its category, which has been downloaded more than 6 million times right now. Affected Versions and CVSS I’ve successfully verified the vulnerability in the following...
by Julien Ahrens | Sunday, March 2, 2014 | Exploit
I’ve published another security advisory about a remote code execution vulnerability with a CVSS score of 10,0 today. Affected are all available versions of the GetGo Download Manager, so if you’re still using this software you should immediately switch to...
by Julien Ahrens | Wednesday, February 19, 2014 | Exploit
I’m focusing on exploit development at the moment and it’s time to raise the level to my personal next challenge: I’ve rm -rf’ed my Windows XP virtual machine! Now I’m happy to announce and document my first full VirtualProtect() ROP...
by Julien Ahrens | Wednesday, November 27, 2013 | Exploit
Hello readers, Pop a calculator here, pop one there! I’m focusing on exploit development at the moment, because I love calculators ;-). My exploit targets the vulnerability described in CVE-2013-3934: Stack-based buffer overflow in Kingsoft Writer 2012...
by Julien Ahrens | Saturday, November 16, 2013 | Advisory, Exploit
Hello Followers, Avira is one of the leading Anti-Virus vendors and also the biggest one in Germany. Security is their daily business and they’ve done a quite nice job in hardening their products. But even the toughest software may be broken sometimes ;-). So,...
by Julien Ahrens | Sunday, September 8, 2013 | Advisory, Exploit
Hello readers, this is my first article in a series about vulnerabilities in Watchguard products. Watchguard is a self-proclaimed NextGen Security vendor building security appliances for complete network protection. As I am working with Watchguard products for around...
