27
Jul
Today (27.07.2010) I’m going to the hospital (Hospital de la Tour) for surgery… I don’t know how long I’m going to stay in the hospital after the surgery and when I will be available… Wish me good luck!
Best regards,
Adam Zabrocki
In co-operation with Maksymilian Arciemowicz we were analysing implementation of OPIE Authentication System on FreeBSD. The result is discovered off-by-one vulnerability in library ‘libopie’. The most interesting point of this vulnerability is a possibility to exploit it pre-auth remotely!
A lot of softwares using this library for authentication module. For example FreeBSD team change a little the source of the OpenSSH. They added in some places the code which use the libopie 
The same changed code is used by DragnoflyBSD. OpenSuSe is using libopie too. Novell systems too.
We’ve analysed exploiting way in default FTP daemon for FreeBSD 8.0. Official FreeBSD’s advisory is available here.
Yesterday (30 of April) I gave a lecture in WA (White Area) at CERN. I was talking about my new project (in fact Master of Degree thesis topic). This is automated testing tool which uses fuzzing technique. It can be used for generate CLI, API, Unit, Functionally, Regression, … , tests – in fact we can use it for all types of tests. Generated programs are independent from language. It can generate output program in JAVA, C, C++, Assembler, Python, Perl, C#, … languages – we can simply add new modules for add new languages. To be more flexible, framework used Aspect-Oriented Programming (AOP). First beta version of framework is published on CERN svn servers. It is integrated with DPM CLI tests and works pretty well
18
Mar
One day I was reviewing all bugs in bugtraq IDs (popular bids). I want to know which kind of bugs is it now popular and what is the trend of modern bugs. I came to two main conclusions:
1) The most popular are SQL/XSS bugs but in 60% this is found in software which nobody knows/uses (stupid kiddie)
2) We’ve got 2010 year and there is still possible to find stack overflow bugs! The most funny thing for me there is more remote stack overflow bugs than local 
1
Mar
28th of February I had a IT group meeting. On this meeting I had been giving lecture about modern rootkits, virus and malwares for 1 hour. The presentation give a point for malware called bankers, attacks for device (skimming), new attack for CHIP cards, and how rootkits hide in *NIX systems. I have had really positive feedback so I’m happy that people likes my talking Personally I think it wasn’t bad
I can’t publish my presentation but if you know me I can talk with you about my topic of lecture
Best regards,
Adam Zabrocki
10
Feb
CERN openlab / Intel Computer Architecture and Performance Tuning Workshop Winter 2010… From 9:00 (9th of February) until 17:00 (10th of February) openlab are filled by people who wants to learn smth from Intel’s guys… At the beginning I want to say that one of the speaker will be Polish guy – Andrzej Nowak. Here is short plan of lectures:
CVE-2010-0010: Apache mod_proxy vulnerability
After contact with Apache security team i can publish new advisory. This bug exists only in apache 1.3 version in mod_proxy modules, only in 64 bits architecture.
I would like to thanks Colm MacCárthaigh – the guy responsible for contact with me and patch this hole.
Bugfix is available in a forthcoming version of Apache 1.3.x.
If you have any question just contact with me. Advisory is avaible here:
30
Dec
This will be very short post… I have found (few months ago) security vulnerability in one of Apache server/module. I contact with apache security team. After few days I will decide about “future” of this bug – publish or wait for security path and publish after it. Now I can paste here simple output from gdb:
15
Dec
More than year ago I was publish advisory in ‘mtr’ software. I think, personally, it is great bug because it can’t exist without unspecified situation in libresolv library The question is why have I written information about it on blog?
I forgot add this advisory in my site (sic!) Now it’s ok and you can find this advisory here.
I attached to this advisory details and Proof Of Concept. If you haven’t read it yet i strongly recommend you to do it because it shows that sometimes if we read source code we think bug doesn’t exists but sometimes other external stuff/bugs/unspecified situation help us to trigger and exploit unexisting bug
6
Dec
Is it a dream? Impossible? Bugs in CPU? No… it’s reality! CPU is only a piece of hardware. Everything have bugs… CPU too. I will give here only a piece of information about bugs in INTEL products…