Overview
Syllabus
Intro
Supply chain
Why Treck TCP/IP?
Ripple20 Research
About CVE-2020-11901
DNS Primer: The Basics
DNS Primer: Record Types
Domain Names Encoding
DNS Message Compression
DNS Parsing Logic Type MX
DNS Label Length Calculation
Vulnerability #1: Read Out-Of-Bounds
Integer Overflow
Fixing the Read Out-Of-Bounds
Bad RDLENGTH
Artifact: Memory Leak
CVE-2020-11901: Summary
Target Device
Vulnerability Recap
Exploitation Technique
Overflow Target
CNAME Processing
Controlled Pointer Write
Linear Overflow
Heap Shaping
Pointer Write Limitations
Overwriting a Far Call
Payload Trigger
Taught by
Black Hat