One Article Review
| Source |  TrendLabs Security |
|---|---|
| Identifiant | 1325701 |
| Date de publication | 2019-09-12 12:08:14 (vue: 2019-09-13 22:00:04) |
| Titre | From BinDiff to Zero-Day: A Proof of Concept Exploiting CVE-2019-1208 in Internet Explorer |
| Texte |  Last June, I disclosed a use-after-free (UAF) vulnerability in Internet Explorer (IE) to Microsoft. It was rated as critical, designated as CVE-2019-1208, and then addressed in Microsoft's September Patch Tuesday. I discovered this flaw through BinDiff (a binary code analysis tool) and wrote a proof of concept (PoC) showing how it can be fully and consistently exploited in Windows 10 RS5.
A more in-depth analysis of this vulnerability is in this technical brief. As mentioned, CVE-2019-1208 is a UAF vulnerability. This class of security flaws can corrupt valid data, crash a process, and, depending on when it is triggered, can enable an attacker to execute arbitrary or remote code. In the case of CVE-2019-1208, an attacker successfully exploiting this vulnerability could gain the same rights as the current user in the system. If the current user has administrative privileges, the attacker can hijack the affected system - from installing or uninstalling programs and viewing and modifying data to creating user accounts with full privileges.
|
| Envoyé | Oui |
| Condensat | 1208 2019 accounts addressed administrative affected after analysis appeared arbitrary attacker binary bindiff brief can case class code concept consistently corrupt could crash creating critical current cve data day: depending depth designated disclosed discovered enable execute exploited exploiting explorer first flaw flaws free from full fully gain has hijack how installing internet june last mentioned microsoft modifying more patch poc post privileges process programs proof rated remote rights rs5 same security september showing successfully system technical then through tool triggered tuesday uaf uninstalling use user valid viewing vulnerability when windows wrote zero |
| Tags | Vulnerability |
| Stories | |
| Notes | ★★★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.