quick.links

recent.news

2010-09-14 - the slides from my recent (re-)presentation (with lots of extra bits) at SEC-T 2010, will soon be online! exploit code [...]

2009-12-18 - The slides from my recent presentation at CRESTCon 2009, the 'replacement' for CHECKCon, are now online! exploit code for the demonstrations [...]

:.home3.1415926..

a good home must be made, not bought.
NO MORE FREE BUGS!$%!

More 0day Disk Encryption Driver Bugs @SEC-T 2010!

Posted on: 2010-09-14

the slides from my recent (re-)presentation (with lots of extra bits) at SEC-T 2010, will soon be online! exploit code for the demonstrations will (yet again) follow very soon!

recent.additions

  • February 08-11
    - DESLock+ <= 4.1.2 vdlptokn.sys Driver Local Kernel ring0 Code Execution
    [ deslock-vdlptokn-v3.c ]
  • January 07-11
    - Silicon Graphics Inc (SGI) - IRIX - Local Kernel Memory Disclosure/Denial of Service
    [ irix-xlvattrget-dos.c ]
  • September 16-10
    - Utimaco Safeware AG (Sophos) - SafeGuard PrivateDisk Local Kernel Device 'unmount' Exploit
    [ safeguard-pdisk-unmount.c ]
  • September 16-10
    - Utimaco Safeware AG (Sophos) - SafeGuard PrivateDisk Local Kernel Device header 'overwrite' Exploit
    [ safeguard-pdisk-write-header.c ]
  • September 14-10
    - SEC-T 2010: "Vulnerabilities in Full/Virtual Disk Encryption Products"
    [ presentation (pdf) ]
  • May 26-10
    - SecurStar DriveCrypt <= 5.4 Local Kernel ring0 Code Execution
    [ drivecrypt-dcr.c - BID-45750 ]
  • May 26-10
    - SecurStar DriveCrypt <= 5.4 Local Kernel Arbitrary File Read/Write Exploit
    [ drivecrypt-fopen.c ]
  • April 26-10
    - NovaSTOR NovaNet <= 12.0 Remote Memory Read/Denial of Service
    [ novanet-read.c - BID-39693 ]
display 10 15 20 25 30 35 40 45 50 55 60 65 70 75 80 all