This advisory shows the results of a vulnerability research which was conducted on PayDroid_7.1.1_Virgo_V04.3.26T1_20210419 running on the A930 terminal. As a result of this research 4 vulnerabilities were identified (CVE-2022-26579, CVE-2022-26580, CVE-2022-26581, CVE-2022-26582).

Writeup for a pwn challenge from Dragon CTF 2020. The challenge mmaps a 4096 bytes with RWX permissions, takes input into the allocated memory then does some operations on it. 2 bytes of our input gets executed before the program terminates.

Writeup for a pwn challenge from HackTM Quals 2019 which only takes an input of 11 bytes. Solution included fuzzing allowed syscalls to bypass seccomp rules,doing an arbitrary read to execute more shellcode and leaking the flag using a sidechannel attack.

Writeup for a pwn challenge from justCTF 2019. The challenge’s binary runs a demo shellcode and the objective is to find a way to execute your own shellcode and bypass validation to get the flag.

Writeup for a misc challenge from EGCERT CTF 2019. The challenge give a corrupted JPEG image which has one bit flipped and needs to be reverted to retrieve the flag.

Writeup for a misc challenge from EGCERT CTF 2019. The challenge gives a netcat server which takes input and compares it to the flag with time delay for each correct character.