I figured that it might be worth releasing the “The story of CVE-2011-2018 exploitation” as a stand-alone, nicely formatted paper for your reading convenience. It was previously released in the Hack in The Box Magazine #8 over a month ago (see announcement blog post). In short words, the paper is a guide through the exploitation process of a subtle, yet very interesting vulnerability in the Windows kernel, patched by Microsoft in December 2011. Without further ado, the full document can be downloaded at: cve_2011_2018.pdf (607kB).
In other news, Gynvael has written a blog post about the IGK’09 conference we attended in late March. Among other things, there was a ~7h game development competition that we (as usual) decided to take part in it, together with our superior graphic designer: xaos//vx. You can read the whole story here, whereas the result of our efforts can be admired below:
And that’s it, enjoy!