http://www.secuobs.com Observatoire de la securite Internet fr webmaster@secuobs.com 2011-11-02 21:02:10 - Abysssec Security Research : hello all as we didn t publish any exploit for a bit we just going to release 1 Advisory information Title Microsoft Excel 2007 SP2 Buffer Overwrite Vulnerability Vendor http wwwmicrosoftcom Impact Critical Contact info at abyssseccom Twitter abysssec Microsoft A remote code execution vulnerability exists in the way that Microsoft http://www.secuobs.com/revue/news/338439.shtmlhttp://www.secuobs.com/revue/news/338439.shtml Secuobs.com : 2011-09-24 23:16:14 - Abysssec Security Research - hello to all readers Introduction as you read in abysssec in twitter actually in past a few month we did a research on bypassing anti-viruses and got great result Bypassing anti-viruses is not a new topic and it s about encrypting decrypting a program to being hide from AV eyes In past it was really, really http://www.secuobs.com/revue/news/330903.shtmlhttp://www.secuobs.com/revue/news/330903.shtml Secuobs.com : 2011-07-26 15:13:24 - Abysssec Security Research - Hello all again we are here with a patched vuln again and this time apple safari one actually it s not that really odd to see your 0day got patched in vendor big patches and this time this happened to US too our safari vulnerability got patched and we decide to public our windows exploit stand alone http://www.secuobs.com/revue/news/319283.shtmlhttp://www.secuobs.com/revue/news/319283.shtml Secuobs.com : 2011-07-18 17:13:35 - Abysssec Security Research - Abysssec Research we tried for other case in exploit bounty this time for a 500 one no luck for successful exploitation and to be host we didn t tried so hard at least we got a PoC and here is our analysis for this cool bug 1 Advisory information Title GDI CreateDashedPath Integer overflow in gdiplusdll http://www.secuobs.com/revue/news/317585.shtmlhttp://www.secuobs.com/revue/news/317585.shtml Secuobs.com : 2011-07-03 12:34:16 - Abysssec Security Research - hello again to all of our great readers is this post we are going to do some clarification also share and drop some random 0day DEP ASLR bypass using 3rd parties due to there is lots of things to say we wrote all the notes as an article called The Arashi Table of http://www.secuobs.com/revue/news/314928.shtmlhttp://www.secuobs.com/revue/news/314928.shtml Secuobs.com : 2011-04-19 15:24:33 - Abysssec Security Research - Hello again as a lot of readers like windows 7 exploits here is other one 1 Advisory information Title Adobe Flash player Action script type confusion Version flash10hdll Discovery Malware writers Exploit wwwabyssseccom Vendor http wwwadobecom Impact Critical Contact shahin at abyssseccom , info at abyssseccom http://www.secuobs.com/revue/news/299390.shtmlhttp://www.secuobs.com/revue/news/299390.shtml Secuobs.com : 2011-04-06 12:05:32 - Abysssec Security Research - Hello to all readers we know that there are thousands and millions of online game players around and we guess lots of them may like to cheat this is our totally offensive research that we did to present in immunity infiltrate and as we missed that so here we go This research is about hacking http://www.secuobs.com/revue/news/296571.shtmlhttp://www.secuobs.com/revue/news/296571.shtml Secuobs.com : 2010-12-21 02:27:39 - Abysssec Security Research - hello all Our Demo is clear enough maybe we release some more detail s later There is a video that cannot be displayed in this feed Visit the blog entry to see the video good luck http://www.secuobs.com/revue/news/273229.shtmlhttp://www.secuobs.com/revue/news/273229.shtml Secuobs.com : 2010-10-22 17:47:43 - Abysssec Security Research - 1 Advisory information Title Adobe Shockwave player rcsL chunk memory corruption Version Shockwave player 1158612 Discovery http wwwabyssseccom Vendor http wwwadobecom Impact Critical Contact shahin at abyssseccom , info at abyssseccom Twitter abysssec CVE ZeroDay Not Patched 2 Vulnerable version Shockwave Player 1158612 last version 3 Vulnerability information Class http://www.secuobs.com/revue/news/259243.shtmlhttp://www.secuobs.com/revue/news/259243.shtml Secuobs.com : 2010-10-04 12:08:44 - Abysssec Security Research - hello to all after a while we have big surprise for you We are about to unleash our Month Of Abysssec Undisclosed Bugs on exploit-db Starting on the 1st of September, we will release a collection of 0days, web application vulnerabilities, and detailed binary analysis and pocs for recently released advisories by vendors such as Microsoft, Mozilla, Sun, Apple, Adobe, HP, Novel, etc http://www.secuobs.com/revue/news/253994.shtmlhttp://www.secuobs.com/revue/news/253994.shtml Secuobs.com : 2010-10-04 12:08:44 - Abysssec Security Research - Yes finally MOAUB Month of Abysssec Undisclosed Bugs started and finished as well Good Or Bad we released lots of 0days and binary analyses during a month September and you can use these info for owning websites UN-patched clients or writing more secure applications here is summary Day1 Binary Analysis MOAUB 1 http://www.secuobs.com/revue/news/253993.shtmlhttp://www.secuobs.com/revue/news/253993.shtml