Process Memory Dumper for Credentials Disclosure Vulns [Archive]

View Full Version : Process Memory Dumper for Credentials Disclosure Vulns

evilcry

March 28th, 2008, 15:00

Hi,

This last period was full of intersting findings, I've published two advisories on Bugtraq:

http://www.securityfocus.com/bid/28420

and

http://www.securityfocus.com/archive/1/490265/30/0/threaded

So I also coded a Process Memory Dumper, useful to improve these vulns.
It can be downloaded here:
http://evilcry.altervista.org/other/ProcessMemoryDumper.zip

Enjoy!

See you to the next post..

disavowed

April 6th, 2008, 17:10

Regarding the VPN post, I don't see how this is a security vulnerability. Is the process's memory space readable by other users that aren't Admin? If not, it's not a security vulnerability

Regarding the XChat "DoS", that's not a security vulnerability either. It's a bug that causes a crash and can only be done by the active user.

evilcry

April 7th, 2008, 00:00

Hi,

Quote:

Is the process's memory space readable by other users that aren't Admin? If not, it's not a security vulnerability

Yes, every user can dump the memory image of the process.

Password stored in clear in memory is not a good practice.

Here an nice article about that topic

http://blogs.msdn.com/alikl/archive/2007/12/08/avoid-manipulating-passwords-in-memory-it-is-easy-to-reveal.aspx

Regards