Advisories
archive

Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors

TurboRand: V8 Type Confusion Private Property Leak

Introduction TurboRand is a v8 exploitation during the TyphoonCTF 2023, this challenge (a.k.a TruboFan is no Fun) centred around a TurboFan (V8’s optimising compiler) type confusion bug. For the challenge we provided contenders with multiple

Win32k User-Mode Printer Drivers StartDoc UAF

Summary A vulnerability in the UMPD (User-Mode Printer Drivers) allows local users to trigger a use-after-free vulnerability. The vulnerability works from Windows 8 and above, and is fairly easy to exploit on older Windows machines.

?

Get in touch