Posts tagged 'Binary Podcast'

• 100 - DDR4 Rowhammer, Azure Bugs, "Essential 0days", and Backdoored IDA

  17 November 2021

  North Korea is at it again targeting researchers, 0day hoarding, breaching secure hardware, and fuzzing on this weeks episode.

• 98 - A too trusty TrustZone and a few Linux Kernel bugs

  10 November 2021

  Some interesting vulnerability envrionments this week, some Trusted App issues, a couple Linux Kernel vulns, and a look at memory safety issues in unsafe Rust.

• 96 - Type Confusion in Android NFC, PHP-FPM Local Privilege Escalation, and CallbackHell

  03 November 2021

  This week we dive into PHP-FPM internals to look at escelating from a worker process to the root process, anotehr GDI bug, and a type confusion.

• 94 - A Kernel Race, SuDump, and a Chrome Garbage Collector Bug

  27 October 2021

  We start off this week with a look at in-the-wild 0days from the past seven years, before diving into some pretty awesome bugs this week including a OOB access in Squirrel (programming language), a couple Linux kernel issues and a Chrome garbage collector bug.

• 92 - WebKit Bugs, a Windows Race, and House of IO Improved

  20 October 2021

  Tianfu Cup happened this week, we also got some cool windows and webkit issues, along side an improvment to the House of IO attack

• 90 - HyperKit Bugs & an Open5GS Stack Overflow

  13 October 2021

  Uninitialized variables everywhere in Hyperkit, and a Open5GS stack-based buffer overflow.

• 88 - Chrome Exploits and a Firefox Update Bug

  06 October 2021

  This week we start off with a nice introduction to signedness issues before diving into a couple Chrome bugs (type confusion and use-after-free)

• 86 - Kernel UAFs and a Parallels VM Escape

  29 September 2021

  This week we we've got a couple Linux kernel Use-After-Frees and a Parallels guest to host escape.

• 84 - A Curl UAF, iPhone FORCEDENTRY, and a Crazy HP OMEN Driver

  22 September 2021

  We start off the week with a crazy driver that exposes some powerful primitives, a use-after-free in curl, we speculate a bit about exploiting a 2-byte information disclosure, and talk about FORCEDENTRY.

• 82 - NETGEAR smart switches, SpookJS, & Parallels Desktop

  15 September 2021

  This week we've got an awesome chain of attacks in NETGEAR smart switches, a speculative type confusion (Spook.js) and an integer overflow leading to HTTP Request Smuggling

• 80 - Escaping the Bhyve, WhatsApp & BrakTooth

  08 September 2021

  A tricky to exploit WhatsApp vulnerability, but still an interesting bug, several Bhyve vulnerabilities, and a named bluetooth vuln (Braktooth)