17 December 2024 Show Notes 267 - Buggy Operating Systems Are Coming to Town 00:06:48 Buffer Overflow Risk in Curl_inet_ntop and inet_ntop4 00:19:20 Bypassing WAFs with the phantom $Version cookie Additional Links: https://datatracker.ietf.org/doc/html/rfc2109 https://blog.ankursundara.com/cookie-bugs/ https://grayduck.mn/2024/11/21/handling-cookies-is-a-minefield/ 00:27:51 Windows Sockets: From Registered I/O to SYSTEM Privileges 00:34:02 ksthunk.sys Integer Overflow (PE) 00:38:20 Linux Kernel: TOCTOU in Exec System