Blog-o-Mix

Security - consulting,assessment,research,solutions,penetration tests.
Face - detect,track,recognize,extract features,learn emotions,character animation.

Security Bulletins - [ACSA-2012-15] - SA47855 Ghostscript Windows buffer overflows OutputFile

04/04/12 | by zveriu | Categories: ACSA

Security Bulletins - [ACSA-2012-15] - SA47855 Ghostscript Windows buffer overflows OutputFile

THe GhostScript for Windows security advisory [ACSA-2012-15] reported by me and marked as highly critical in SA47855, now have been fixed. It is greatly advised to upgrade to GhostScript 9.05.

Download here the original advisory and PoC samples.

Read more! »

Leave a comment •

Security Bulletins - Xerox XRX12-003

03/08/12 | by zveriu | Categories: Software, Security, ACSA

Security Bulletins - Xerox XRX12-003

Xerox started to roll out fixes for some of my security advisories (ACSA).

So, here we go:
XRX12-003 v1.1

Read more! »

Leave a comment •

Upcoming talks - Hack In Paris, Paris, 22-23 June 2012

03/07/12 | by zveriu | Categories: Conference, Hack In Paris

Upcoming talks - Hack In Paris, Paris, 22-23 June 2012

It’s been great news for me that my talk “PostScript: Danger ahead!” have been accepted for Hack In Paris security conference.

Read more! »

Leave a comment •

Upcoming talks - PHDays, Moscow, 30-31 May 2012

03/07/12 | by zveriu | Categories: Conference, PHDays.ru

Upcoming talks - PHDays, Moscow, 30-31 May 2012

I am happy to announce that my talk “PostScript: Danger ahead!” have been accepted for PHDays security conference.

Perhaps this years preffered topics could be “vote rigging: techniques, detection and protection", “automating vote monitoring“, “vote processing devices“

See you in Moscow!

Leave a comment •