all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

188 - Rusty Kernel Bugs, mast1c0re, and OpenSSH [Binary Exploitation Podcast]

Add to bookmarks
Feb. 16, 2023, 1 a.m. | DAY[0]

DAY[0] www.youtube.com

Few discussions this week, from using ASAN for effectively, to vulnerabilities in Rust code, and some discussion about exploiting the OpenSSH double free.

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/188.html

[00:00:00] Introduction
[00:00:31] Spot the Vuln - Too Soft
[00:04:19] One Weird Trick to Improve Bug Finding With ASAN
[00:08:27] Rustproofing Linux (Part 2/4 Race Conditions)
[00:22:39] OpenSSH Pre-Auth Double Free Writeup & PoC [CVE-2023-25136]
[00:34:14] mast1c0re: Part 2 - Arbitrary PS2 code execution
[00:42:39] All …

amp auth binary binary exploitation bug bugs code code execution conditions cve cve-2023-25136 discussions effectively exploitation exploiting free introduction kernel linux openssh poc podcast race conditions rust vuln vulnerabilities weird writeup

Visit resource

More from www.youtube.com / DAY[0]

252 - Bypassing KASLR and a FortiGate RCE [Binary Exploitation Podcast] 4 weeks ago | www.youtube.com
aslr binary binary exploitation bypass +23
251 - RCE'ing Mailspring and a .NET CRLF Injection [Bug Bounty Podcast] 4 weeks, 2 days ago | www.youtube.com
attack attack chain attacks bounty +16
Future of Exploit Development Follow-up (Episode 250) 1 month ago | www.youtube.com
corruption development exploit exploit development +9
249 - libXPC to Root and Digital Lockpicking [Bug Bounty Podcast] 1 month ago | www.youtube.com
android authentication authentication bypass bounty +22
248 - Binary Ninja Free and K-LEAK [Binary Exploitation Podcast] 1 month, 1 week ago | www.youtube.com
automated binary binary exploitation binary ninja +13
247 - Hacking Google AI and SAML [Bug Bounty Podcast] 1 month, 1 week ago | www.youtube.com
auth authentication authentication bypass automated +25
246 - Rust Memory Corruption??? [Binary Exploitation Podcast] 1 month, 3 weeks ago | www.youtube.com
access array binary binary exploitation +21
245 - A PHP and Joomla Bug and some DOM Clobbering [Bug Bounty Podcast] 1 month, 3 weeks ago | www.youtube.com
api bounty bug bug bounty +20
244 - Linux Burns Down CVEs [Binary Exploitation Podcast] 1 month, 4 weeks ago | www.youtube.com
binary binary exploitation buffer buffer overflow +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Security Engineer (SPLUNK) | Remote US

@ Coalfire | United States
View on infosec-jobs.com

Cyber - AppSec - Web PT2

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Ingénieur consultant expérimenté en Risques Industriels - Etude de dangers, QRA (F-H-X)

@ Bureau Veritas Group | COURBEVOIE, Ile-de-France, FR
View on infosec-jobs.com

Malware Intern

@ SentinelOne | Bengaluru, Karnataka, India
View on infosec-jobs.com
View more jobs