Welcome to BFS Labs
Here you will be presented with the latest and most exciting security research activities undertaken by the Blue Frost Security research team. You will find whitepapers, tools, advisories and blog posts.
Advisories
-
Huawei HiSuite Insecure Service Directory ACLs
A privilege escalation vulnerability was identified which can be used by a local user to elevate privileges.
-
Samsung SW Update Insecure Service Directory ACLs
A privilege escalation vulnerability was identified which can be used by a local user to elevate privileges.
-
FireEye Detection Evasion and Whitelisting of Arbitrary Malware
An analysis engine evasion was identified which allows an attacker to completely bypass FireEye's virtualization-based dynamic analysis on Windows and whitelist arbitrary malicious binaries.
-
IE11 CObjectElement Use-After-Free Vulnerability
A use-after-free vulnerability was identified which allows the execution of arbitrary code on vulnerable installations of Microsoft Internet Explorer.
-
OpenSSH PAM Privilege Separation Vulnerabilities
Multiple vulnerabilities in OpenSSH were identified that could allow successful authentication as an arbitrary user and thus impersonation of other users.
Publications
-
Look Mom! I Don’t Use Shellcode
A Browser Exploitation Case Study for Internet Explorer 11
-
Exploiting CVE-2014-4113 on Windows 8.1
Analysis of the Windows kernel vulnerability CVE-2014-4113, demonstrating how it can successfully be exploited on Windows 8.1.
Blog
-
Understanding Emergency Windows Update MS14-068
This post explains the functionality of the critical vulnerability CVE-2014-6324 found in the Windows implementation of the Kerberos authentication protocol.
BFS team in Oslo for internal research seminar. Up next Copenhagen :) https://t.co/1qdsKoWwNd
4 days, 18 hours ago
This is the way we do dinner @bluefrostsec https://t.co/Gq8kpkdRJU
1 week, 2 days ago
Upgrading our office! https://t.co/NnzCZ4ZE1r
1 week, 2 days ago
MS IE 11 mitigation bypasses by @moritzj being presented now in track 3 @44CON #44CON
2 weeks, 1 day ago
Best talks today @44CON happening in obscure track 3! MS mitigation bypasses by @moritzj and Linux kernel exploitation by @vnik5287 #44CON
2 weeks, 2 days ago