10 May 2011

[Video] Google Chrome 11.0.696.65- Pwned - bypass


Bài viết liên quan:

video
The exploit shown in this video is one of the most sophisticated codes we have seen and created so far as it bypasses all security features including ASLR/DEP/Sandbox, it is silent (no crash after executing the payload), it relies on undisclosed (0day) vulnerabilities discovered by VUPEN and it works on all Windows systems (32-bit and x64)," VUPEN said in its advisory about the bugs.
"The video shows the exploit in action with Google Chrome v11.0.696.65 on Microsoft Windows 7 SP1 (x64). The user is tricked into visiting a specially crafted web page hosting the exploit which will execute various payloads to ultimately download the Calculator from a remote location and launch it outside the sandbox at Medium integrity level."

BẢN RÕ NÉT HƠN:

http://www.youtube.com/watch?v=c8cQ0yU89sk&feature=player_embedded

0 comments:

Post a Comment

Để lại góp ý của bạn để blog của mình hoàn thiện hơn :))