Blog

Wild Pointer > Blog

Challenge Overview   https://2024.ctf.sekai.team/challenges/#Funny-lfr-14 The challenge provides a dockerfile and a python application - both required to create the web server. The docker file is short, and contains the following code:     We can immediately understand by looking at the dockerfile code that the flag is kept as a local environment...

Read More

Executive Summary WinRAR, 500+ million users, is exposed to new vulnerabilities (CVE-2023-40477, CVE-2023-38831). Today, we present for the first-time: A PoC for CVE-2023-40477 (At time of writing) Although considered RCE & assumed to be exploitable, its' impact in reality doesn't look promising because of numerous...

Read More