Medijski sadržaj
- Tweetovi
- Tweetovi i odgovori
- Medijski sadržaj, trenutna stranica.
-
Just derestricted two Microsoft DirectWrite font bugs fixed yesterday, found with the harness I published recently. One shiny mem. disclosure only affected Edge, as Chrome and Firefox were protected by OTS, which doesn't allow EBDT/EBLC tables. Yay for attack surface reduction
https://twitter.com/ProjectZeroBugs/status/1171834666736730112 …pic.twitter.com/wmk0ILShqX
-
I'm very happy to be ranked #9 on this year's
@msftsecurity researcher list at#BHUSA2019, which makes it the fifth year in top 10. Hats off to everyone else on the list!
pic.twitter.com/z7w3m6qX2J
-
I also took the chance to analyze all kernels starting with Windows NT4, and created a chart showing the progression of the syscall table sizes between 1996-2019 in visual form. Actually seeing the bigger picture of a ~2.5x growth is quite fascinating/scary.pic.twitter.com/mfLuMz4n5h
Prikaži ovu nit -
As promised last week, the details of the .PDB heap memory disclosure in Visual Studio (CVE-2018-1037) are now available at https://bugs.chromium.org/p/project-zero/issues/detail?id=1500 …. Infoleaks are a really special breed of bugs, be it in kernel or user-mode
pic.twitter.com/diwbO7I5S7
Prikaži ovu nit -
The write-ups of 12 further x64-specific Windows kernel infoleaks fixed last week are now online: https://bugs.chromium.org/p/project-zero/issues/list?can=1&q=fixed%3A2018-mar-13+finder%3Amjurczyk …. I'll discuss their discovery in my upcoming
@InfiltrateCon talk in April :)pic.twitter.com/Gzv0UgTp81
-
I've just derestricted a new unpatched Windows 7-10 kernel pool pointer leak: https://bugs.chromium.org/p/project-zero/issues/detail?id=1456 …. It's an interesting instance of a "double-write" race condition during user/kernel interactions.pic.twitter.com/uIBnq6Uzdy
-
The video from my Black Hat USA 2017 talk on Bochspwn Reloaded (kernel memory disclosure detection project) is now on YouTube:https://www.youtube.com/watch?v=8tqo78E04cM …
-
The syscall tables on my blog were just updated with Windows 10 Fall Creators Update. The velocity of win32k changes is getting out of handpic.twitter.com/GvERwAkzCS
-
I'm happy and honored to be listed #1 on this year's
@msftsecurity researcher list. :) Congratulations to everyone who made it there.pic.twitter.com/QFX5IlLCFj
-
If you like kernel security or the Bochspwn project, feel invited to my Bochspwn Reloaded talk at
@reconmtl and@BlackHatEvents this summer.pic.twitter.com/gVclDOTXPc
-
Seems like I made it to both top 3 and 57 on this year's MSRC researcher list at
#BHUSA. :)pic.twitter.com/OtuRiKRR34
-
@cryptax@gynvael thanks! :) here's a larger piece of the final ranking if you're interested.pic.twitter.com/0jXsX23quy
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.