Abuse Melding

Je hebt een klacht over de onderstaande posting:

24-06-2018, 09:01 door -karma4

Microsoft compileert - blijkbaar - haar runtime libraries met CFG. Alle software die gebruik maakt van die libraries wordt kwetsbaar. Zoals Edge. We assessed the availability of our gadgets to understand the feasibility and impact of BATE: we ran a complete assessment of Windows 10 system libraries, and found many occurrences of our gadgets, even in appealing targets (such as C/C++ runtime libraries, the JavaScript engine, a media codec, and Microsoft Office). Every application that loads any library that contains our gadgets is exposed to BATE. We therefore conclude that BATE is a realistic threat, both on 32-bit and 64-bit systems. We demonstrated this by using BATE to build a remote code execution exploit against the Microsoft Edge browser, a high-value target (because it can be exploited remotely, as the victim only needs to visit, for example, a compromised webpage). http://wp.internetsociety.org/ndss/wp-content/uploads/sites/25/2018/02/ndss2018_05A-3_Biondo_paper.pdf

Beschrijf je klacht (Optioneel):

captcha