Research

Advisories

Below lists all the currently published security advisories for original vulnerabilities as discovered through research performed by Harmony Security.

Date	Severity	Title
21 July 2010		Novell Teaming Arbitrary File Upload Remote Code Execution Vulnerability
21 June 2010		Novell Access Manager File Upload Remote Code Execution Vulnerability
01 June 2010		Novell ZENworks Preboot Service Stack Buffer Overflow Vulnerability
23 April 2010		Novell ZENworks UploadServlet Remote Code Execution Vulnerability
05 April 2010		Sun Java CMM readMabCurveData Stack Buffer Overflow Vulnerability
23 Feb 2010		EMC HomeBase Arbitrary File Upload Remote Code Execution Vulnerability
08 Dec 2009		HP Application Recovery Manager Stack Buffer Overflow Vulnerability
20 Nov 2009		HP Operations Manager Backdoor Account Code Execution Vulnerability
28 Oct 2009		EMC & OpenText Hummingbird STR Service Stack Overflow Vulnerability
23 Sept 2009		Adobe RoboHelp Server Arbitrary File Upload and Execute Vulnerability
22 July 2009		Akamai Download Manager Stack Buffer Overflow Vulnerability
21 July 2009		Novell Privileged User Manager Remote DLL Injection Vulnerability
28 April 2009		TIBCO SmartSockets Stack Buffer Overflow Vulnerability
14 Oct 2008		Microsoft Host Integration Server Command Execution Vulnerability
14 Sept 2008		EMC ApplicationXtender Server Admin Agent Heap Overflow Vulnerability
14 Sept 2008		EMC ApplicationXtender Server Admin Agent File Upload Vulnerability
04 Jun 2008		VMware Tools HGFS Local Privilege Escalation Vulnerability
27 May 2008		EMC AlphaStor Server Agent Multiple Buffer Overflow Vulnerabilities
27 May 2008		EMC AlphaStor Library Manager Command Execution Vulnerability
10 Apr 2008		EMC DiskXtender Authentication Bypass Vulnerability
10 Apr 2008		EMC DiskXtender File System Manager Buffer Overflow Vulnerability
10 Apr 2008		EMC DiskXtender MediaStor Format String Vulnerability
19 Feb 2008		EMC RepliStor Multiple Heap Overflow Vulnerabilities
09 Jan 2008		Novell NetWare Client Local Privilege Escalation Vulnerability
07 Jan 2008		Motorola netOctopus Agent Privilege Escalation Vulnerability
24 Dec 2007		Novell ZENworks ESM Client Local Privilege Escalation Vulnerability
12 Nov 2007		Novell NetWare Client Privilege Escalation Vulnerability
06 Nov 2007		Microsoft DebugView Privilege Escalation Vulnerability
10 Oct 2007		Kaspersky Web Scanner ActiveX Format String Vulnerability
10 Aug 2007		Qbik WinGate Remote Denial of Service Vulnerability

 

Reverse Engineering

OllySocketTrace - OllySocketTrace is a plugin for OllyDbg to trace the socket operations being performed by a process, recording all buffers being sent and received.

OllyHeapTrace - OllyHeapTrace is a plugin for OllyDbg to trace the heap operations being performed by a process. It will monitor heap allocations and frees for multiple heaps, as well as operations such as creating or destroying heaps and reallocations.

OllyCallTrace - OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread allowing you to monitor it for irregularities to aid in the debugging of stack based buffer overflows as well as to quickly plot the execution flow of a program you are reversing.

 

Exploit Research

Reflective Dll Injection - Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Kungfoo Shellcode - The Kungfoo Shellcode is a win32 shellcode system released in 2001.

Janus - Janus is a proof of concept non-blind TCP/IP connection spoofer with ARP cache poisioning.