Cross-Site Escape - Pwning macOS Safari Sandbox the Unusual Way

Cross-Site Escape - Pwning macOS Safari Sandbox the Unusual Way

Black Hat via YouTube Direct link

Intro

1 of 23

1 of 23

Intro

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Cross-Site Escape - Pwning macOS Safari Sandbox the Unusual Way

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Comparation
  3. 3 TOCTOU Without Racing
  4. 4 Web Content Case Study
  5. 5 Timeline for Web Content
  6. 6 Dashboard Widgets
  7. 7 Turning to Arbitrary Widget installation
  8. 8 Sandbox Escape
  9. 9 Problems
  10. 10 Triggering Execution
  11. 11 Hard Coded Trusted Schemes
  12. 12 Legacy Help
  13. 13 Sandbox is...gone
  14. 14 (Failed) Local File Disclosure
  15. 15 Some Drama
  16. 16 CVE-2020-9979: We Got Trust Issue
  17. 17 Dictionary App
  18. 18 Arbitrary File Execution
  19. 19 Local File Execution
  20. 20 How do we jump to Dictionary?
  21. 21 Jump to Dictionary.app
  22. 22 Summary
  23. 23 Takeaways

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.