Exploiting Adobe Flash Player in the Era of Control Flow Guard

Exploiting Adobe Flash Player in the Era of Control Flow Guard

Black Hat via YouTube Direct link

Overview of CFG

3 of 17

3 of 17

Overview of CFG

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Exploiting Adobe Flash Player in the Era of Control Flow Guard

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Agenda
  3. 3 Overview of CFG
  4. 4 CVE-2015-0311 Overview
  5. 5 Control flow hijacking attempt detected!
  6. 6 Approaches
  7. 7 Flash JIT compiler
  8. 8 Leveraging the JIT compiler to bypass CFG
  9. 9 Current status
  10. 10 JIT hardening
  11. 11 Data-only attacks: related work
  12. 12 The Security Settings object
  13. 13 Gaining (unauthorized) access to the camera & mic
  14. 14 From Remote sandbox to Local Trusted sandbox
  15. 15 Executing commands without shellcode nor ROP
  16. 16 Crafted state
  17. 17 Thank you!

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.