Skip to content

Pepsi World

Just another Pepsi

  • About

Month: September 2018

[Demo] VLC media player 2.2.8 Use-After-Free Code Execution

September 8, 2018September 8, 2018 chako Exploit, Security

VLC media player 2.2.8 has a Use-After-Free vulnerability which allows an attacker to execute arbitrary code.
the exploit use ROP to bypass DEP protection.

tested it on Win10 64
successfully exploit attempt should pop up calc.exe ( Windows Calculator )

Ref :
https://www.exploit-db.com/exploits/44979/

Recent Posts

  • [Part 2] PCMan FTP 2.0.7 BoF (DEP) October 10, 2019
  • [Part 1] PCMan FTP 2.0.7 BoF October 8, 2019
  • rewrite and practice – auth_overflow.c October 7, 2019
  • TheSystem 1.0 – Command Injection Exploit October 1, 2019
  • How to Set Up a Static IP on the Raspberry Pi September 19, 2019
  • Testing Metasploit Exploit Module for BlueKeep (CVE-2019-0708) September 16, 2019
  • Install and use GlobalProtect VPN March 28, 2019
  • Enable/Install .Net3.5 on Win10 using cmd February 13, 2019
  • Setup a nice looking WSL terminal on Win 10 December 28, 2018
  • Delete Protected system fonts (Win 7, Win10) November 7, 2018

Categories

Categories

  • Linux
  • Network
  • Powershell
  • Projects
  • Security
    • Exploit
    • Shellcode
    • Tool
    • vulnerability
  • Software
  • Study Note
  • Uncategorized
  • Windows
    • Else
    • Hyper-V
    • Windows Server

Archives

  • October 2019 (4)
  • September 2019 (2)
  • March 2019 (1)
  • February 2019 (1)
  • December 2018 (1)
  • November 2018 (2)
  • September 2018 (1)
  • March 2018 (1)
  • February 2018 (2)
  • January 2018 (2)
  • December 2017 (4)
  • November 2017 (4)
  • October 2017 (2)
  • September 2017 (3)
  • June 2017 (10)
  • May 2017 (3)
  • March 2017 (2)
  • February 2017 (2)
  • January 2017 (12)

Links

Charlie Russel's Blog
Proudly powered by WordPress | Theme: Blogi by CantoThemes.