Windows NT/2K/XP/2K3/VISTA/2K8/7/8 EPATHOBJ local ring0 exploit // ----------------------------------------- taviso cmpxchg8b.com ----- // // INTRODUCTION // // There's a pretty obvious bug in win32k!EPATHOBJ::pprFlattenRec where the // PATHREC object returned by win32k!EPATHOBJ::newpathrec doesn't initialise the // next list pointer. The bug is really nice, but exploitation when // allocations start failing is tricky.
e are a group of students from the European University of Madrid who have made a security analysis of IP video surveillance cameras as the final project of Security and Information Technology Master. In total, we analyzed 9 different camera brands and we have found 14 vulnerabilities.
From these vulnerabilities, there are all kinds: simple vulnerabilities, such as XSS or CRSF, and very harmful and dangerous vulnerabilities such as privilege escalation or bypass authentication.
**Note that all the analysis we have done has been from cameras found through Google dorks and Shodan, so we have not needed to purchase any of them for our tests. Everything we needed was online.