Vulnerability-Research

Today, I’ll be performing a teardown of the AC1200 Dual Band Wi-fi Router vM32A3_V1410_240222 and obtaining a UART shell. My goal was to explore its hardware, extract its firmware via SPI flash, and gain access to its UART debugging console for deeper analysis. TL;DR: I dumped the device firmware off the NOR flash, identified one working UART interface out of several possible ones, soldered on pin headers, and obtained a UART shell....

Introduction On November 19th, 2024, Qualys publicly disclosed five local privilege escalation vulnerabilities discovered in the needrestart binary that comes installed by default on Ubuntu Server installations. They disclose the technical details of these here, however, I will be attempting to rediscover CVE-2024-48990 prior to reading the technical details based purely on the information from the CVE description and references. Then, I will create my own exploit that gives me a reverse shell as root....