Posted by SkyLined on March 8th, 2010 in Browsers, Internet Explorer, Repro and Security ·
Quoting http://msdn.microsoft.com/en-us/library/aa930622.aspx:
typedef struct tagBITMAPINFOHEADER {
DWORD biSize;
LONG biWidth;
LONG biHeight;
WORD biPlanes;
WORD biBitCount
DWORD biCompression;
DWORD biSizeImage;
LONG biXPelsPerMeter;
LONG biYPelsPerMeter;
DWORD biClrUsed;
DWORD biClrImportant;
} BITMAPINFOHEADER;
“If the bitmap is a packed bitmap (a bitmap in which the bitmap array immediately follows the BITMAPINFO header and is referenced by a single pointer), the biClrUsed member must be either zero or the actual size of the color table.”
ANI files stores each frame of the animated cursor as a packed bitmap inside the ANI file…
Posted by SkyLined on March 4th, 2010 in ASP, Browsers, HTTP servers, JavaScript and Programming Languages ·
Today I am releasing another old project called ASPsh. The goal of this project was to create an ASP page that can be used on a server to provide a “command line shell”-like experience when opening the page in a webbrowser…
Posted by SkyLined on March 1st, 2010 in Browsers, HTML, Internet Explorer, JavaScript, PoC, Programming Languages and Security ·
In 2005 I released Internet Exploiter 2, which helped make heap spraying popular in browser exploits…
Posted by SkyLined on February 1st, 2010 in Uncategorized ·
In other news: I am looking for a better hosting provider, or at least one that does what I pay them to do, or at the very least what they promis.
Posted by SkyLined on January 26th, 2010 in Uncategorized ·
Google Chrome 4 has been released…
Posted by SkyLined on January 20th, 2010 in Browsers, Internet Explorer, JavaScript, Programming Languages, Repro and Security ·
Two crashes caused by NULL pointer dereferences have been discovered in MSIE 6.0/7.0. These issues do not affect MSIE 8.0…
Posted by SkyLined on January 17th, 2010 in Uncategorized ·
Unfortunately, our wiki is broken. Due to having a social life, it may be a while before we can restore functionality.
Posted by SkyLined on January 17th, 2010 in Uncategorized ·
I’ve released the source for a 97 byte shellcode that executes calc.exe.
Posted by SkyLined on January 11th, 2010 in Assembler, Programming Languages, Security and Shellcode ·
Everyone and their dog seems to want to use download and execute shellcode in their exploits. Even though this has some drawbacks:
You need to create an .exe file on the system, which will very likely draw unwanted attention…
