[ExpDev] HP OpenView NNM 7.5 Exploitation — SEH; Egghunter

TL;DR

Hello! Today I will be going over how to exploit HP OpenView NNM (release — B.07.50) application leveraging “OVAS.exe.” The 0day vulnerability was introduced to the public in 2011 by Mati Aharon at DEFCON 16. The talk is amazing, and he pretty much walks to you through from finding a bug to developing an exploit in order to get a shell. However, some of…

--

--

--

OSWE | OSCE | OSCP | CREST | Lead Offensive Security Engineer — All about Penetration Test, Red Team, Cloud Security, Web Application Security

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How To Install Apache Web Server On CentOS 7

Create a Free Virtual Private Server On Amazon Web Services (AWS)

Here is how I wrote Python script to wish my colleague Happy Birthday

Java Interview Series: REST API

The Clash of Two Blocks (Part 1)

Digital Citations — A Paperless Parking Citation System (An All-Amazon Serverless Cloud Solution)

Journal of an Independent Mobile App Developer: Part 2

What is CroDex?

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
bigb0ss

bigb0ss

OSWE | OSCE | OSCP | CREST | Lead Offensive Security Engineer — All about Penetration Test, Red Team, Cloud Security, Web Application Security

More from Medium

Buffer Overflow Challenge #1 Walkthrough

How Often Should You Pentest? — Cyver

MAL: Malware Introductory — TryHackMe CTF

CrowSec EdTech Write-Up: Poisoning