Omega Red

Omega Red's garbage heap

Information wants to be free.



[<]  [1] [2] [3] [4] [5]  [>]  


A few docs worth reading:
- A generic attack on checksumming-based software tamper resistance
- Analyzing Adversarial Code (PowerPoint)
- Kaspersky Antivirus Library Remote Heap Overflow
- Protecting Software Codes By Guards
- Remote Windows Kernel Exploitation
- W64 Rugrat Virus Analysis
...find it here.


About time for an update, eh?
Jogger started to annoy me with its user/post access management, or lack thereof. So, I've unearthed my own weblog engine and almost finished it. Status: 99% or so. Anyway, it's live now here.


HTML that reboots Windows? Why not ;)
Inspired by this page I investigated this a bit with my friend at work. Results:
  1. "Crashing" HTML is: <img src="pic.png" width="9999999" height="9999999">
  2. Image is 1024x768 in size
  3. It's not another exploit/buffer overflow in GDI - it's sufficient to make an empty bitmap with that size and save it as BMP/JPG/PNG - result is the same (GIF/TIFF doesn't work ;)
  4. It's apparently a bug in GDI/memory manager - reducing WIDTH/HEIGHT size and/or image size itself doesn't cause reboot. But then why Opera is immune to it, while IE/Firefox are vulnerabel? ;)
  5. Data from event log:
    The driver nv4_disp for the display device \Device\Video0 got stuck in an infinite loop. This usually indicates a problem with the device itself or with the device driver programming the hardware incorrectly. Please check with your hardware device vendor for any driver updates.
    The computer has rebooted from a bugcheck. The bugcheck was: 0x100000ea (0x81fe09e8, 0x821a52e8, 0xf8960cb4, 0x00000001). A dump was saved in: C:\WINDOWS\Minidump\Mini061005-06.dmp.
  6. That would point to a video driver bug (?), but after testing it on machines with different videocards, results are always the same.
  7. Windows XP pro SP2 with all updates is vulnerable. Windows 2000 and 2003 doesn't reboot, but freezes effectively.

You can test it HERE too.


Due to notorious lack of time and/or motivation, I've just started my weblog on Jogger. It's in Polish only, though - my unfinished engine was fully multilingual, but... Oh well. ;)


Well, the new functionality is about 80% done - ~1800 lines of code. It would go significantly faster, but one little problem had appeared - I bought World of Warcraft, a MMORPG by Blizzard, and before played in the open European beta. It consumes most of my free time now - I'm coding at work mostly. ;)


Coding goes as fast as possible, but I'd want to be already finished - many important things are happening, there is much to write.
Or nothing is happening - there are only thoughts. Many thoughts, that should be written - sometimes so different from what once was.
Velvet Acid Christ - Fun With Knives


Transfer successfull, the new "apartment" is nice, and the job is great. We'll see what the future bring.
The site will remain in PHP - I don't have much time for learning ASP, and I don't want to host it on my home system. Today I've changed engine a bit, to be continued - weblog, fixes, english translation of remaining text.


    Nothing new here. I'm moving from my town to the capital. Mixed feelings about it... I wanted it, of course - a solid job, end of struggles with the family... but on the other hand there is always stress involved, and the family turns out not to be that bad... Whatever.
    I wanted to rewrite this website in ASP.NET, but I don't know. I need some kind of stimulation to fix broken links lingering here back from the initial site upgrade. And, maybe I'm going a bit dizzy, but I'm going to write some kind of web-log engine (and use it ;). If the plans with ASP.NET don't go well, it'll be in PHP.
    Anathema - The Last Goodbye


Benchmark showing differences in registers/memory access time of the CPU.


Behold the english version of the site! [grin]
At least translated some stuff, more to come - stay tuned.

[<]  [1] [2] [3] [4] [5]  [>]  


Copyright by Omega Red 2003,2004