Security Research
Hoku Security is a proactive company and we undertake vulnerability research as part of the due diligence we perform for our clients. This archive lists the past and current research that our security engineers have been involved with:
Security Advisories
AsteriDex / Asterisk / Trixbox command execution
Traceroute-nanog buffer overflow advisory
Citadel/UX multiple vulnerabilities
H-Sphere WebShell multiple vulnerabilities
Plptools local format-string vulnerability
AutoMated Shops WebC multiple vulnerabilities
Apache mod_mylo remote buffer overflow
GNU LSH (SSH) remote buffer overflow
BestCrypt local root buffer overflow (offsite)
phpMyAdmin arbitrary command execution (offsite)
Traceroute-nanog buffer overflow advisory
Citadel/UX multiple vulnerabilities
H-Sphere WebShell multiple vulnerabilities
Plptools local format-string vulnerability
AutoMated Shops WebC multiple vulnerabilities
Apache mod_mylo remote buffer overflow
GNU LSH (SSH) remote buffer overflow
BestCrypt local root buffer overflow (offsite)
phpMyAdmin arbitrary command execution (offsite)