@_niklasb I guess you already know the technical details, but I only got around to it now, so FYI in case you're interested. :) the exploit code is at https://gist.github.com/j00ru/2347cf937366e61598d1140c31262b18 …https://twitter.com/j00ru/status/1019595401769422852 …
-
-
Not to mention there's many "0-day" kernel address leaks from the pools that Microsoft fixes only in the next version of Windows, like https://bugs.chromium.org/p/project-zero/issues/detail?id=1456 … or some similar bugs.
-
But in the end I agree it's mostly a formality with access to SystemModuleInformation, other scenarios are certainly trickier ;)
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.