↧
Mitigating Null Pointer Exploitation on Windows
As part of a small research project, I recently looked into how exploitation of null pointer vulnerabilities could be mitigated on Windows. The problem with many of the recent vulnerabilities affecting...
View ArticleWindows Hooks of Death: Kernel Attacks through User-Mode Callbacks
At Black Hat USA 2011, I presented the research that lead up to the 44 vulnerabilities addressed in MS11-034 and MS11-054. These vulnerabilities were indirectly introduced by the user-mode callback...
View Article
Image may be NSFW.
Clik here to view.
Clik here to view.
CVE-2012-0148: A Deep Dive Into AFD
This week, Microsoft addressed two vulnerabilities in the Ancillary Function Driver (AFD) that could allow non-privileged users to elevate their privileges to SYSTEM. In this blog entry, we look at one...
View Article