Explore a detailed breakdown of two zero-day vulnerabilities used to exploit 64-bit Internet Explorer at the Pwn2Own contest. Delve into the challenges of bypassing Address Space Layout Randomization (ASLR), Control Flow Guard (CFG), and Enhanced Protected Mode (EPM) on Windows 8.1. Learn about innovative techniques for achieving remote code execution and privilege escalation in a 64-bit environment. Examine the intricacies of exploiting an uninitialized memory bug and a time-of-check to time-of-use (TOCTOU) vulnerability. Gain insights into advanced exploit mitigation bypass methods for 64-bit IE, equipping yourself with knowledge to better understand and defend against sophisticated browser exploits.
Overview
Syllabus
Hey Man, Have You Forgotten To Intialize Your Memory?
Taught by
Black Hat