Security Audit Notes: OpenSSL d1_srvr.c Overflow - Advanced Information Security

2015-03-18 Thread Nicholas Lemonias.
-=[ Advanced Information Security Corporation ]=- Author: Nicholas Lemonias Type: Security Audit Notes Date: 17/3/2015 Email: lem.nikolas (at) gmail (dot) com Audit: OpenSSL v1.0.2 (22nd of January, 2015 Release

OpenSSL v1.0.2 for Linux affected by CVE-2015-0235

2015-03-12 Thread Nicholas Lemonias.
-=[ Advanced Information Security Corporation ]=- --- Author: Nicholas Lemonias Type: Security Audit Notes Date: 07/3/2015 Email: lem.niko...@gmail.com Audit: OpenSSL v1.0.2 (22nd of January, 2015 Release

Security Audit Notes - OpenSSL v1.0.2a (latest) Issues - Advanced Information Security Corporation

2015-04-02 Thread Nicholas Lemonias.
-=[Advanced Information Security Corp]=- Author: Nicholas Lemonias Report Date: 2/4/2015 Email: lem.niko...@gmail.com Introduction == During a source-code audit of the OpenSSL v1.0.2a (Latest) implementation for linux; conducted internally by the Advanced Information Security Group

4k ULTRA HIGH DEFINITION Satellite Security Research - DVB-S2X Security Evaluation Draft Notes

2015-04-23 Thread Nicholas Lemonias.
Author: Nicholas Lemonias Advisory Date: 23/4/2015 4k Satellite Security Research - DVB-S2X Standard Evaluation Notes

4k ULTRA HIGH DEFINITION Satellite Security Research - DVB-S2X Security Evaluation Draft Notes - Advanced Information Security Corporation

2015-04-27 Thread Nicholas Lemonias.
Author: Nicholas Lemonias Advisory Date: 23/4/2015 4k Satellite Security Research - DVB-S2X Standard Evaluation Notes

Security Advisory - Apache HTTP Server 2.2.29 / 2.4.12 NULL Pointer dereference in protocol.c

2015-04-15 Thread Nicholas Lemonias.
-=[Advanced Information Security Corporation]=- Advisory for Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference Author: Nicholas Lemonias Advisory Date: 14/4/2015 Email: lem.nikolas (at) gmail (dot) com Introduction == During a source-code audit of the Apache HTTPD

Apache HTTPD 2.4.12/ 2.2.29 Security Audit Notes - Advanced Information Security Corp

2015-04-13 Thread Nicholas Lemonias.
-=[Advanced Information Security Corp]=- Author: Nicholas Lemonias Advisory Date: 13/4/2015 Email: lem.nikolas (at) gmail (dot) com Introduction == During a source-code audit of the Apache HTTPD 2.2.29 release implementation for linux; conducted internally by the Advanced Information

Security Advisory - Apache HTTP Server 2.2.29 / 2.4.12 NULL Pointer dereference in protocol.c

2015-04-14 Thread Nicholas Lemonias.
-=[Advanced Information Security Corporation]=- Advisory for Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference Author: Nicholas Lemonias Advisory Date: 14/4/2015 Email: lem.nikolas (at) gmail (dot) com Introduction == During a source-code audit of the Apache HTTPD

Security Audit Notes = Kerberos (krb5-1.13) issues - Advanced Information Security Corp

2015-04-06 Thread Nicholas Lemonias.
-=[Advanced Information Security Corp]=- Nicholas Lemonias Report Date: 3/4/2015 Email: lem.niko...@gmail.com Introduction == During a source-code audit of the krb5-1.13 stable release (15 October 2014) implementation for linux; conducted internally by the Advanced

Security Audit Notes - OpenSSH 6.8 - Advanced Information Security Corp

2015-04-02 Thread Nicholas Lemonias.
-=[Advanced Information Security Corp]=- Author: Nicholas Lemonias Report Date: 2/4/2015 Email: lem.nikolas (at) gmail (dot) com Introduction == During a source-code audit of the OpenSSH v6.8 (latest) release implementation for linux; conducted internally by the Advanced

US DoD's Dc3dd v7.2.6 suffers from a Buffer Overflow vulnerability - Advanced Information Security Corporation - Zero Day Research

2015-10-14 Thread Nicholas Lemonias.
--..__)888P`._.' ~ Keeping Things Simple! === Advanced Information Security Corporation Security Advisory Date: 14/10/2015 Credit: Nicholas Lemonias

Advanced Information Security Corporation, Security Advisory (MYSQL v5.6.24 Buffer Overflows)

2015-10-07 Thread Nicholas Lemonias.
._/"Yaa_: .| 88P| \YP"`| 8P `. / \.___.d|.' `--..__)888P`._.' ~ Keeping Things Simple! MySQL v5.6.24 BUFFER OVERFLOWS Date: 07/10/2

Advanced Information Security Corporation, Security Advisory (Oracle's MYSQL v5.6.24 Latest - Buffer Overflows) Repost

2015-10-07 Thread Nicholas Lemonias.
._/"Yaa_: .| 88P| \YP"`| 8P `. / \.___.d|.' `--..__)888P`._.' ~ Keeping Things Simple! MySQL v5.6.24 BUFFER OVERFLOWS Date: 07/10/2

Advanced Information Security Corporation, Security Advisory (MYSQL v5.6.24 Buffer Overflows)

2015-10-09 Thread Nicholas Lemonias.
:88b d8" 'Y88b :8P ' :888 8a. : _a88P ._/"Yaa_: .| 88P| \ YP" `| 8P `. / \.___.d| .' `--..__)888P`._.' ~ Keeping Things Simple! MySQL v5.6.24 BUFFER OVERFLOWS Date: 07/10/2015 Author: Nicholas Lemonias

Proftpd 1.3.5a LATEST 0day Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-29 Thread Nicholas Lemonias.
=== Date: 29/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd 1.3.5a LATEST 0day Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-29 Thread Nicholas Lemonias.
=== Date: 29/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd 1.3.5a LATEST 0day Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-29 Thread Nicholas Lemonias.
=== Date: 29/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd 1.3.5a LATEST 0day Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-29 Thread Nicholas Lemonias.
=== Date: 29/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd 1.3.5a LATEST 0day Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-29 Thread Nicholas Lemonias.
=== Date: 29/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd 1.3.5a LATEST 0day Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-29 Thread Nicholas Lemonias.
=== Date: 22/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd 1.3.5a LATEST 0day (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation Audit Report.

2015-11-29 Thread Nicholas Lemonias.
=== Date: 22/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd 1.3.5a LATEST 0day Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-29 Thread Nicholas Lemonias.
.::PROFTPD v1.3.5a Heap / Malloc Vulnerabilities ::. ADVANCED INFORMATION SECURITY CORPORATION Credit: Nicholas Lemonias Date: 29/11/2015 = a888b

Proftpd 1.3.5a LATEST (0-day) Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-30 Thread Nicholas Lemonias.
=== Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS / MALLOC CORRUPTION ::. ADVANCED INFORMATION SECURITY CORPORATION Keeping Things Simple! == .:. .8

Proftpd 1.3.5a LATEST 0day Follow-up report (Part 2), Patch released!! 29/11/2015 --- Advanced Information Security Corporation

2015-11-30 Thread Nicholas Lemonias.
=== Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS / MALLOC CORRUPTION ::. ADVANCED INFORMATION SECURITY CORPORATION Keeping Things Simple! == .:. .8

Proftpd v1.3.5a ZERODAY - Heap Overflows due to zero length mallocs. Advanced Information Security Corporation

2015-11-23 Thread Nicholas Lemonias.
Advanced Information Security Corporation === Date: 22/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd ZERODAY - Malloc issues Advanced Information Security Corporation

2015-11-23 Thread Nicholas Lemonias.
Advanced Information Security Corporation === Date: 22/11/2015 Credit: Nicholas Lemonias .:: PROFTPD v1.3.5a HEAP OVERFLOWS

Proftpd v1.3.5a ZERODAY - Heap Overflows due to zero length mallocs. Advanced Information Security Corporation

2015-11-23 Thread Nicholas Lemonias.
=== Date: 22/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd v1.3.5a ZERODAY - Heap Overflows due to zero length mallocs. Advanced Information Security Corporation

2015-11-23 Thread Nicholas Lemonias.
Advanced Information Security Corporation === Date: 22/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd v1.3.5a ZERODAY - Malloc issues Advanced Information Security Corporation

2015-11-23 Thread Nicholas Lemonias.
Advanced Information Security Corporation === Date: 22/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd v1.3.5a ZERODAY - Heap Overflows due to zero length mallocs. Advanced Information Security Corporation

2015-11-23 Thread Nicholas Lemonias.
=== Date: 22/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Proftpd v1.3.5a ZERODAY - Heap Overflows due to zero length mallocs. Advanced Information Security Corporation

2015-11-23 Thread Nicholas Lemonias.
Advanced Information Security Corporation === Date: 22/11/2015 Credit: Nicholas Lemonias .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ADVANCED INFORMATION SECURITY CORPORATION

Novel Contributions to the field - How I broke MySQL's code-base (Part 2) [CVE-2016-5541] MySQL cluster remote 0day

2017-01-18 Thread Nicholas Lemonias.
* * * Copyright (c) 2017, Advanced Information Security Corp / Oracle Inc.* * * *