Month: March 2011

Security Advisory: Plumber Injection Attack in Bowser’s Castle

Advisory Name:
Plumber Injection Attack in Bowser’s Castle
Release Date:
2011-04-01
Application:
Bowser’s Castle
Affected Versions:
Super Mario Bros., Super Mario Bros.: The Lost Levels
Identifier:
SMB-1985-0001
Advisory URL:
https://blogs.oracle.com/ksplice/entry/security_advisory_plumber_injection_attack

Vulnerability Overview


Multiple versions of Bowser’s Castle are vulnerable to a plumber injection
attack. An Italian plumber could exploit this bug to bypass security measures
(walk through walls) in order to rescue Peach, to defeat Bowser, or for
unspecified other impact.

Exploit


This vulnerability is demonstrated by
“happylee-supermariobros,warped.fm2”. Attacks using this exploit have been
observed in the wild, and multiple other exploits are publicly available.

Affected Versions


Versions of Bowser’s Castle as shipped in Super Mario Bros. and Super
Mario Bros.: The Lost Levels
are affected.

Solution


An independently developed patch is available:

--- a/smb.asm   1985-09-13 12:00:00.000000000 +0900
+++ b/smb.asm   2011-04-01 12:00:00.000000000 -0400
@@ -12009,12015 +12009,12015 @@
         ldy $04
         cpy #$05
         bcc *+$09
-        lda $45
+        lda #$01
         sta $00
         jmp $df4b
         jsr $dec4

A binary hot patch to apply the update to an existing version is also available.

All users are advised to upgrade.

Mitigations


For users unable to apply the recommended fix, a number of
mitigations are possible to reduce the impact of the vulnerability.

NOTE THAT NO MITIGATION IS BELIEVED TO BE COMPLETELY EFFECTIVE.

Potential mitigations include:

Credit


The vulnerability was originally discovered by Mario and Luigi, of Mario
Bros. Security Research.

The provided patch and this advisory were prepared by Lakitu Cloud Security,
Inc. The hot patch was developed in collaboration with Ksplice, Inc.

Product Overview


Bowser’s Castle is King Bowser’s home and the base of operations for the
Koopa Troop. Bowser’s Castle is the final defense against assaults by Mario to
kidnap Princess Peach, and is guarded by Bowser’s most powerful minions.

~nelhage

Security Advisory: Plumber Injection Attack in Bowser’s Castle

Advisory Name:
Plumber Injection Attack in Bowser’s Castle
Release Date:
2011-04-01
Application:
Bowser’s Castle
Affected Versions:
Super Mario Bros., Super Mario Bros.: The Lost Levels
Identifier:
SMB-1985-0001
Advisory URL:
https://blogs.oracle.com/ksplice/entry/security_advisory_plumber_injection_attack

Vulnerability Overview

Multiple versions of Bowser’s Castle are vulnerable to a plumber injectionattack. An Italian plumber could exploit this bug to bypass security measures(walk through walls) in order to rescue Peach, to defeat Bowser, or forunspecified other impact.

Exploit

This vulnerability is demonstrated by“happylee-supermariobros,warped.fm2”. Attacks using this exploit have beenobserved in the wild, and multiple other exploits are publicly available.

Affected Versions

Versions of Bowser’s Castle as shipped in Super Mario Bros. and SuperMario Bros.: The Lost Levels are affected.

Solution

An independently developed patch is available:

— a/smb.asm 1985-09-13 12:00:00.000000000 +0900+++ b/smb.asm 2011-04-01 12:00:00.000000000 -0400@@ -12009,12015 +12009,12015 @@ ldy $04 cpy #$05 bcc *+$09- lda $45+ lda #$01 sta $00 jmp $df4b jsr $dec4

A binary hot patch to apply the update to an existing version is also available.

All users are advised to upgrade.

Mitigations

For users unable to apply the recommended fix, a number ofmitigations are possible to reduce the impact of the vulnerability.

NOTE THAT NO MITIGATION IS BELIEVED TO BE COMPLETELY EFFECTIVE.

Potential mitigations include:

Credit

The vulnerability was originally discovered by Mario and Luigi, of MarioBros. Security Research.

The provided patch and this advisory were prepared by Lakitu Cloud Security,Inc. The hot patch was developed in collaboration with Ksplice, Inc.

Product Overview

Bowser’s Castle is King Bowser’s home and the base of operations for theKoopa Troop. Bowser’s Castle is the final defense against assaults by Mario tokidnap Princess Peach, and is guarded by Bowser’s most powerful minions.

~nelhage

Mirror Mirror on the Exadata….

In past posts, I have discussed several aspects of the Oracle Exadata Database Machine, most recently concerning the methods used by Advanced Customer Services (ACS) to configure the network and software. But ASM must be used for Exadata and requires the administrator to use ASM redundancy, because Exadata does not do Array Based Mirroring. The […]

The first and the only Oracle user group application in the world. From TROUG

http://itunes.apple.com/tr/app/turkish-oracle-user-group/id424769558?mt=8 Dünyanın ilk ve tek oracle kullanıcı grubu uygulamasını bu linkten indirebilirsiniz. Tabi ki TROUG’den. Bu uygulama ile etkinliklerimizi takip edebilir ve forumlarımıza katılabilirsiniz. Eline sağlık Zekeriya Beşiroğlu. You may download the first and the only oracle user group application in iTunes from this link. Of course it’s from TROUG. You can follow our events […]

The Cost of Mediocre

Over the years I’ve written tons of scripts to monitor all sorts of things on the database.  Some of those scripts turned out to be helpful on an ongoing basis and some ended up dying on the vine when new features of Oracle came out.

One of my script…

TEL/電話+86 13764045638
Email service@parnassusdata.com
QQ 47079569