Tag: Windows

Bypassing Windows ASLR in Microsoft Word using Component Object Model (COM) objects

A couple of months ago a RTF 0-day was used in attacks and to bypass ASLR (Address Space Layout Randomization) it was using a non-ASLR module MSCOMCTL.OCX. This got me interested to research into how it was actually loading up and discover if there were any more modules that could be used in the future following the recent Microsoft bulletin MS14-024 that finally implemented ASLR on the module. I started with an exploit taken from MetaSploit which exploits the Microsoft Word RTF Object Confusion vulnerability (CVE-2014-1761) and patched in April updates MS14-017 . This exploit uses module MSCOMCTL.OCX to bypass ASLR and what I needed was that part of the code so removed all other code leaving it just to load the OCX file. …

Original Article Can be Found Here:

Bypassing Windows ASLR in Microsoft Word using Component Object Model (COM) objects


Also published on Medium.

Top 10 Incredibly Useful Windows Programs to Have On Hand

Some apps are essential, and you use them every day. Everyone knows their names: Firefox, VLC, 7-Zip, and so on. However, there’s another class of app that gets less attention: the apps that are insanely useful to have in your back pocket on the rare occasions you need them. Here are 10 of our favorites. 10. Speccy Maybe you’ve forgotten what kind of RAM you bought, or want a quick glance at your CPU’s temperature. Speccy scans your machine and gives you a complete rundown of everything, from model numbers to temperatures, fan speeds, S.M.A.R.T. status, and…well, pretty much anything else you can think of. It’s also available in portable form, so you don’t have to install anything – just stick it in a folder…

Read Original Article Here:

Top 10 Incredibly Useful Windows Programs to Have On Hand

Windows XP Rises From Grave: Simple Hack Gives Five More Years of Updates

Share This article With a simple registry hack, you can net yourself five more years of official Microsoft updates for your aging Windows XP machine. Microsoft, though, says you really shouldn’t do it, and that you ought to be a good little boy and upgrade to a more modern operating system instead. Read on, to find out how to enable the Windows XP updates and whether you should do it or not. The whole Windows XP retirement is becoming a bit of a farce. Microsoft technically ended support for Windows XP on April 8, 2014. But if you were a big company or government with lots of money, Microsoft offered to continue supporting your XP machines and then, when a zero-day vulnerability was…

Read Original Article Here:

Windows XP rises from the grave: Simple hack gives you five more years of updates

How To Remove Pre-Installed Applications From Windows 8

When you freshly install an operating system, there will be some of the basic applications available by default. Especially in Windows, all the basic stuffs like Notepad, Wordpad, Paint, etc., will be installed automatically. Windows 8 has moved a step forward and comes with plenty of Microsoft applications by default. This might be helpful at sometimes, but many users find these apps are unwanted in their PC. The problem in Windows is, it doesn’t have an option to uninstall the default apps, but we have many third party applications available to do that. Today, I’ve come with one such application called “Windows 8 App Remover”, exclusively for Windows 8 users. Here’s how it works. Windows 8 App Remover is a free application for PC, which also works …

Original Article Can Be Found Here:

How To Remove Pre-Installed Applications From Windows 8

How to Get Security Updates for Windows XP Until April 2019

Microsoft’s official support for the Windows XP operating system ended more than a month ago. While some companies and organizations are still receiving updates for the operating system, end users do not. These companies pay Microsoft for that, usually because they were not able or willed to migrate computer’s running Windows XP to another operating system before the extended support phase for the system ended. There is another exception to the end of support rule: Windows Embedded Industry, formerly known as Windows Embedded POSReady, operating systems continue to receive updates. What makes this interesting is the fact that Windows Embedded POSReady 2009 is based on Windows XP Service Pack 3, and that the security updates released for that system are identical with the ones that Microsoft would have released …

Original Article Can Be Found Here:

How to get security updates for Windows XP until April 2019

© 2024 Paul Parisi

Theme by Anders NorénUp ↑