Tag: toc-tou (3)

CTF > HeroCTF v7

pwn - Story Contest

It’s time for you to tell your best story, and maybe you’ll be rewarded accordingly. Good luck !

return-address-overwrite toc-tou race-condition stack-buffer-overflow return-oriented-programming multi-thread decompiling file-descriptor
December 1, 2025 November 29, 2025 Medium
Research

Reproducing Nimbuspwn: Linux Privilege Escalation via Path Traversal and TOCTOU in networkd-dispatcher

A technical walkthrough of reproducing Nimbuspwn (CVE-2022-29799 and CVE-2022-29800), privilege escalation vulnerabilities in networkd-dispatcher exploiting path traversal and TOCTOU race...

path-traversal toc-tou race-condition code-review linux privilege-escalation from-day-zero-to-zero-day reproducing d-bus systemd-networkd networkd-dispatcher sink-to-source cve-2022-29799 cve-2022-29800
November 14, 2025 November 9, 2025 Research
CTF > picoCTF 2023

pwn - tic-tac

Someone created a program to read text files; we think the program reads files with root privileges but apparently it...

race-condition toc-tou
November 4, 2025 October 9, 2025 Hard