HolyGhost logoHolyGhost

#rce

5 posts

AnalysisCVE-2021-44228

Log4Shell: How a Logging Library Became the Internet's Worst Day

A single string written into a log file could run attacker code on millions of servers. Here is how Log4Shell (CVE-2021-44228) worked, why it spread so far, and what it taught the industry about dependencies.

9 min read·#log4shell#java#rce
AnalysisCVE-2017-0144

EternalBlue: The Leaked Exploit That Powered WannaCry

How a flaw in an ageing file sharing protocol, weaponised by a leaked intelligence exploit, spread ransomware across the world in hours. A breakdown of EternalBlue and MS17-010.

8 min read·#eternalblue#smb#windows
AnalysisCVE-2014-6271

Shellshock: The Bash Bug Hiding in an Environment Variable

For years, Bash would run code smuggled into the end of an environment variable. Shellshock (CVE-2014-6271) turned that into remote code execution across a huge slice of the internet.

7 min read·#shellshock#bash#linux
Analysis

Insecure Deserialization: Trusting a Blob of Bytes Too Much

Turning saved data back into live objects sounds harmless. When the data comes from an attacker, it can lead to remote code execution. Here is how insecure deserialization works and how to avoid it.

8 min read·#deserialization#web-security#rce