RCE Security

Julien Ahrens

Vulnerability Intel, ROP Gadget Hunter, Privacy Enthusiast, Full-time BugBounty hunter, @Hacker0x01 MVH, @SynackRedTeam member

Exploiting the NCMedia Sound Editor Pro v7.5.1 MRUList201202.dat File Handling Vulnerability with the help of mona.py

2 minute read

My latest finding: A classic buffer overflow. And this time I’ve used the great mona.py script created by the corelan team to exploit the vulnerability. It h...

IA23 - Aoop CMS v0.3.6 Multiple Vulnerabilities

1 minute read

About a small, but nice CMS! Update immediately to v0.4 RC3 which fixes critical SQL-Injection vulnerabilities!

ProShow Producer still vulnerable after two updates!

1 minute read

This is quite a sad story and also a perfect example of the ignorance or maybe arrogance of many software vendors. I’ve reported the Buffer Overflow vulnerab...

Exploit for Photodex ProShow Producer v5.0.3256 vulnerability

less than 1 minute read

My latest finding: Photodex ProShow Producer v5.0.3256 Local Buffer Overflow Vulnerability

The University of Salzburg refuses security reports

1 minute read

Julien Ahrens

Recent posts

Exploiting the NCMedia Sound Editor Pro v7.5.1 MRUList201202.dat File Handling Vulnerability with the help of mona.py

IA23 - Aoop CMS v0.3.6 Multiple Vulnerabilities

ProShow Producer still vulnerable after two updates!

Exploit for Photodex ProShow Producer v5.0.3256 vulnerability

The University of Salzburg refuses security reports