Видео
youtube.com/watch?v=XukfkonQ4f0
In this talk, we will review research that I worked on for 6-8 months back in 2019. It's a whole design flaw vulnerability class in the windows UI kernel component (win32k), and 11 CVE's were assigned to my findings. I will also introduce new techniques of triggering these vulns, how they cause UAF in the kernel and how complex it was to research it and gain 100% deterministic code execution.
Баги
youtube.com/watch?v=XukfkonQ4f0
In this talk, we will review research that I worked on for 6-8 months back in 2019. It's a whole design flaw vulnerability class in the windows UI kernel component (win32k), and 11 CVE's were assigned to my findings. I will also introduce new techniques of triggering these vulns, how they cause UAF in the kernel and how complex it was to research it and gain 100% deterministic code execution.
Баги
win32k-bugs/SmashTheRef at master · gdabah/win32k-bugs
Dump of win32k POCs for bugs I've found. Contribute to gdabah/win32k-bugs development by creating an account on GitHub.
github.com
