https://hackingpassion.com/tags/buffer-overflow/Recent content in Buffer-Overflow on HackingPassion.com : root@HackingPassion.com-[~]HugoenFri, 05 Jun 2026 09:58:54 +0200https://hackingpassion.com/buffer-overflow-explained/Fri, 05 Jun 2026 09:58:54 +0200https://hackingpassion.com/buffer-overflow-explained/<h1 id="buffer-overflows-the-oldest-way-to-take-over-a-machine-and-how-to-see-it-work-on-your-own-lab">Buffer Overflows: The Oldest Way to Take Over a Machine, and How to See It Work on Your Own Lab</h1> <p>Give a running program more data than it was built to hold, and on a lot of systems that extra data does not just get thrown away. It spills into the memory right next to it. And with a little care, that spilled data ends up running as code, with full control over the machine.</p>https://hackingpassion.com/windows-dns-rce-2026/Wed, 13 May 2026 11:35:57 +0200https://hackingpassion.com/windows-dns-rce-2026/<p>Microsoft patched a critical heap buffer overflow in the Windows DNS Client. An attacker needs no account and no help from the person sitting at the machine to trigger it. Every Windows machine that performs DNS lookups is potentially in scope, and every Windows machine performs DNS lookups constantly.</p> <p>The vulnerability is tracked as <strong>CVE-2026-41096</strong> with a <strong>CVSS score of 9.8</strong>. It sits in a component called <code>dnsapi.dll</code>, the file that handles DNS lookups on every Windows machine. DNS, which stands for Domain Name System, is the system that translates domain names into IP addresses so computers know where to connect. Every time a browser loads a page, an application connects to a server, a VPN establishes, or Windows checks for updates, the system sends out a DNS query asking what IP address belongs to a given name. The DNS Client receives the answer, processes it, and passes it along.</p>https://hackingpassion.com/hashcat-cracks-the-cracker-cve-2026/Sun, 03 May 2026 10:47:49 +0200https://hackingpassion.com/hashcat-cracks-the-cracker-cve-2026/<p><strong>Hashcat v7.1.2 has three unpatched vulnerabilities, all rated 9.8 out of 10.</strong> The tool that security professionals use to crack passwords can be used to crack the machine running it. The CVEs landed on May 1, 2026. There is still no patch.</p> <p>Hashcat is the standard tool for recovering passwords from hashes. A hash is what a password looks like after a one-way scrambling algorithm runs over it. When a database leaks, the passwords do not come out as readable text. They come out as hashes, long strings of letters and numbers that look like gibberish. Hashcat works backwards. It takes guesses, runs the same algorithm over them, and checks whether the result matches a hash in the list. A single <strong>RTX 4090</strong> can run through nearly <strong>300 billion</strong> of those checks every second for the <strong>NTLM</strong> hash type used across Windows corporate networks. The tool has won the KoreLogic &ldquo;Crack Me If You Can&rdquo; <code>562901440119f978aa2b3ed1c1b6439a</code> competition at DEF CON multiple times. Turns out, you can.</p>https://hackingpassion.com/unix-v4-1973-buffer-overflow-history/Sun, 11 Jan 2026 12:45:07 +0100https://hackingpassion.com/unix-v4-1973-buffer-overflow-history/<p>A 52-year-old tape just revealed a buffer overflow that looks exactly like the bugs we&rsquo;re still finding today. 😏</p> <p>In July 2025, someone found a magnetic tape from 1973 in a storage room at the University of Utah. Handwritten on the label: &ldquo;UNIX Original From Bell Labs V4&rdquo;. This turned out to be the only surviving copy of Unix v4, the 1973 version where Ken Thompson and Dennis Ritchie rewrote the entire operating system from assembly into C.</p>