90 - HyperKit Bugs & an Open5GS Stack Overflow
Uninitialized variables everywhere in Hyperkit, and a Open5GS stack-based buffer overflow.
Posts tagged 'Binary Podcast'
88 - Chrome Exploits and a Firefox Update Bug
This week we start off with a nice introduction to signedness issues before diving into a couple Chrome bugs (type confusion and use-after-free)
86 - Kernel UAFs and a Parallels VM Escape
This week we we've got a couple Linux kernel Use-After-Frees and a Parallels guest to host escape.
84 - A Curl UAF, iPhone FORCEDENTRY, and a Crazy HP OMEN Driver
We start off the week with a crazy driver that exposes some powerful primitives, a use-after-free in curl, we speculate a bit about exploiting a 2-byte information disclosure, and talk about FORCEDENTRY.
82 - NETGEAR smart switches, SpookJS, & Parallels Desktop
This week we've got an awesome chain of attacks in NETGEAR smart switches, a speculative type confusion (Spook.js) and an integer overflow leading to HTTP Request Smuggling
80 - Escaping the Bhyve, WhatsApp & BrakTooth
A tricky to exploit WhatsApp vulnerability, but still an interesting bug, several Bhyve vulnerabilities, and a named bluetooth vuln (Braktooth)