Exploits










key flag

FBI pwns TOR|How they screwed up

The gag on the method isn’t even the most interesting question, although it is baffling why a judge would give the code and the method of the exploit to the criminal, but not allow the developers who coded the browser to fix the vulnerability. I want to know why the FBI burned an exploit…a valuable exploit…









Another agonizing Android vulnerability announced | Audio Effect

An attacker would be able to run their code with the same permissions that mediaserver already has as part of its normal routines. Since the mediaserver component deals with a lot of media-related tasks including taking pictures, reading MP4 files, and recording videos, the privacy of the victim may be at risk.