quickzip

QuickZip Stack BOF 0day: a box of chocolates

Published March 27, 2010 |

Over the last couple of weeks, ever since I published 2 articles on the Offensive Blog, I have received many requests from people asking me if they could get a copy of those articles in pdf format. My blog does not include a pdf generator, but it has a “print” button, so you can get […]

Posted in 001_Security, Exploit Writing Tutorials, Exploits | Tagged 0day, 0day-cisco, character set, corelan-quickzip, corelan-safeseh, corelanc0d3r, decoder, encoder, esp-ebp, filename, limitation, memory-heap-stack-esp-ebp, metasploit-cyclic-pattern, Peter Van Eeckhoutte, quickzip, seh, stack-esp-ebp, try harder, windbg-wscr-scripts, zip

QuickZip exploit article part 2 released on OffSec Blog

Published March 15, 2010 |

By Peter Van Eeckhoutte (corelanc0d3r)

Hi all. I just wanted to drop a quick note that I have released part 2 of the QuickZip 0day vulnerability exploit on the Offensive Security Blog just a few moments ago. You can find the article here. Have fun & cheers !

Posted in 001_Security, Exploit Writing Tutorials | Tagged corelan-heap-spray, exploit, exploit article, exploit offensive, fun cheers, note released, offensive, offensive security, offsec blog, part quickzip, part released, quickzip, quickzip day, quickzip exploit, quickzip stack, released offsec, security blog, stack bof, vulndev, vulndev quickzip

corelanc0d3r featured on Offensive Security Blog

Published March 7, 2010 |

By Peter Van Eeckhoutte (corelanc0d3r)

A few moments ago I published a detailed write-up, explaining the steps I took to build a 0day exploit for a zip file handling bug in QuickZip, on the Offensive Security blog. You can read the article here : http://www.offensive-security.com/blog/vulndev/quickzip-stack-bof-0day-a-box-of-chocolates/

Posted in 001_Security, Exploit Writing Tutorials, Exploits | Tagged 0day, corelanc0d3r, corelanc0d3r-exploit, corelanc0d3r-exploit-writing-tutorial, corelanc0d3r-tutorial, corelanc0d3rs-exploit-dev-cheat-sheet, corelanc0d3rs-exploit-dev-cheatsheet, corlanc0d3r, exploit, how-strong-is-your-fu-writeup-corelan, offensive security, offensive-security-article, offensive-security-seh, offensive-security-tutorial, offensive-security-tutorials, offsec, offsec-blogspot, quickzip, seh, tutorial-offensive-security-forum

Corelan Cybersecurity Research

:: Knowledge is not an object, it's a flow ::

QuickZip Stack BOF 0day: a box of chocolates

QuickZip exploit article part 2 released on OffSec Blog

corelanc0d3r featured on Offensive Security Blog

Corelan Training

Donate

Corelan Team Merchandise

Corelan on Slack

Actions

Categories

Hi there!

We have good news for you!