Dailydave mailing list archives

Re: RomPager

From: Piotr Bania <bania.piotr () gmail com>
Date: Thu, 12 Mar 2015 15:27:36 +0100

yo,

(just some additional info)

if someone is bored enough to do some additional analysis/reading:
- http://cawanblog.blogspot.com/2015/02/misfortune-cookie-cve-2014-9222.html

or my own adventure with some awkward hardware hacking (refers to
other bug though but vendor stays the same):
- http://piotrbania.com/all/articles/tplink_patch/

- pb



On Thu, Mar 12, 2015 at 2:23 PM, Dave Aitel <dave () immunityinc com> wrote:

https://vimeo.com/121925542 - The RomPager bug done up for CANVAS Users!

I want to point out always that only writing the exploit gets you the ground
truth about bugs. Until you have done that, it is all insinuations and
rumors. Sometimes only USING the exploit in the wild tells you if it will
really work. That's why hackers are always like "This worked in the wild".
That's a real thing. It's not boasting so much as just the most useful kind
of information. The lab Windows domain setup is not at all the same as
random box out there running so much crapware that nearly every part of it
has been replaced, like the guy in the new Robocop movie who has to
rediscover his humanity in some sort of twisted allegory about the USA
discovering its own humanity in an age of intelligence driven drone-war.

You know how with fortune cookies it's typical to add "in bed" to the end of
the fortune? With security products it's normal to add "Except when it
doesn't" to the end of all their claims. IPS protects you from network
attacks? Except when it doesn't. AV blocks malicious 0days using advanced
heuristics? Except when it doesn't. And so on. :)

Figuring out that edge case can only be done with not just with an
"offensive mindset" - but in general, by actually doing the offensive work
so many people think is beneath them.

-dave
(P.S. Coming to INFILTRATE is a good idea.)

_______________________________________________
Dailydave mailing list
Dailydave () lists immunityinc com
https://lists.immunityinc.com/mailman/listinfo/dailydave




-- 

--------------------------------------------------------------------
Piotr Bania - <bania.piotr () gmail com> - 0xCD, 0x19
Fingerprint: 413E 51C7 912E 3D4E A62A  BFA4 1FF6 689F BE43 AC33
http://www.piotrbania.com  - Key ID: 0xBE43AC33
--------------------------------------------------------------------

               - "The more I learn about men, the more I love dogs."
_______________________________________________
Dailydave mailing list
Dailydave () lists immunityinc com
https://lists.immunityinc.com/mailman/listinfo/dailydave

Current thread:

RomPager Dave Aitel (Mar 12)
- Re: RomPager Piotr Bania (Mar 12)