Still popping shells through notepad.exe like it’s 2019
https://twitter.com/taviso/status/1133384839321853954 …
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
If you want to read about how to turn the bug into shell, you can read my notes on building a CFG jump chain here https://github.com/taviso/ctftool#exploitation-notes …pic.twitter.com/gMIeIH8BZJ
To this day, this is one of the most incredible work after the ImageTragick bug. Simply amazing!!
Thanks! I also did a ton of work on PostScript vulnerabilities, which could be exploited through ImageMagick! Most distributions now disable PostScript codecs by default, here's one example: https://bugs.chromium.org/p/project-zero/issues/detail?id=1640 …
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.