V8 sandbox — новый защитный механизм JavaScript‑движка, используемого в браузерах, основанных на Chromium. В докладе описан способ обхода этого защитного механизма с помощью найденной уязвимости, а также новая техника эксплуатации
V8 sandbox is a new defense mechanism of the JavaScript engine used in Chromium‑based browsers. The report describes a way to circumvent this protective mechanism using the vulnerability found, as well as a new exploitation technique
V8 sandbox is a new defense mechanism of the JavaScript engine used in Chromium‑based browsers. The report describes a way to circumvent this protective mechanism using the vulnerability found, as well as a new exploitation technique
Обход защитного механизма V8 sandbox
offzone.moscow
Презентация и PoC:
GitHub - phoen1xxxx/V8sandbox_bypass: V8sandbox_bypass using stack misalignment
V8sandbox_bypass using stack misalignment. Contribute to phoen1xxxx/V8sandbox_bypass development by creating an account on GitHub.
github.com
GitHub - xv0nfers/V8sandbox_bypass: V8sandbox_bypass using stack misalignment
V8sandbox_bypass using stack misalignment. Contribute to xv0nfers/V8sandbox_bypass development by creating an account on GitHub.
github.com