3aturn

We're revealing details of an obscure debugging feature in the Apple A12-A16 SoC’s that bypasses all of the hard-to-hack hardware-based memory protections on new iPhones. Its not used by the firmware and we don't know how the attackers found out about it. https://t.co/hsQo6JIPMJ

To wrap up 2022, I'm releasing the final part of my 3-part browser exploitation series on Chrome! In this post, we demonstrate the practical use of the concepts we've learned throughout the series by analyzing and exploiting CVE-2018-17463. Enjoy! https://t.co/Xhrnh4fqNB

Today I am releasing part 2 of my 3-part browser exploitation series on Chrome! In part 2, we take a deep dive into the V8 compiler pipeline by understanding what happens under the hood in Ignition, Sparkplug, and TurboFan! Enjoy! https://t.co/XAnbzdnjeQ

Here is my new blog "Technical Analysis of Windows CLFS Zero-Day Vulnerability CVE-2022-37969 - Part 1: Root Cause Analysis", Part 2 will be released soon. Stay tuned!

M

The latest blog from the Trend Micro Research Team looks at CVE-2022-26937: a Microsoft Windows NFS NLM Portmap stack buffer overflow that could lead to RCE. They provide root cause, source code walkthrough, and detection guidance. https://t.co/FhKhIeoG35

Crypto3/Hydseven exploit chain: a Firefox RCE + sandbox escape. Links w/ the CVE-2019-11707 (RCE)+CVE-2019-11708 (sandbox escape) Firefox exploits were emailed at Coinbase in a phishing campaign targeting exclusively the FF browser on Win, Linux, Mac https://t.co/dNWzat4h0U

M

Exploiting a use-after-free in Windows Common Logging File System (CLFS): https://t.co/ZgnYcN8cuT

Happy Patch Tuesday! Back in November 2021, I found and reported a local privilege escalation vulnerability in the Windows Print Spooler. The patch for the vulnerability (possibly CVE-2022–22718, CVSS 7.8) was released today. Read all about it here: https://t.co/JEzVtaj7UH