Recent News

CVE-2020-2696 – Local privilege escalation via CDE dtsession

During my recent audit of Oracle Solaris, undertaken as a weekend project, I inevitably had…

CVE-2020-2656 – Low impact information disclosure via Solaris xlock

A low impact information disclosure vulnerability in the setuid root xlock binary distributed with Solaris…

CVE-2019-3010 – Local privilege escalation on Solaris 11.x via xscreensaver

As previously mentioned, INFILTRATE left me with the will to hack stuff and enjoy it…

Remote Desktop tunneling tips & tricks

During a recent pentest, we got access with weak credentials to a Windows machine via…

Graph’s not dead

Firefox extension to overcome recent limitations and perform Facebook Graph searches.

CVE-2019-10149 exploit: local privilege escalation on Debian GNU/Linux via Exim

A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient…

Raptor at INFILTRATE 2019

2019 marks 20 years of my professional career in information security. What better way to…

CVE-2019-2832 – Local privilege escalation via CDE dtprintinfo

A buffer overflow in the DtPrinterAction::PrintActionExists() function in the Common Desktop Environment 2.3.0 and earlier,…

• 1
• 2
• 3
• 4
• …
• 8
• »