Heap-foo/2022-10-10: Difference between revisions

From Chaosdorf Wiki
(Adding pre-work information)
Line 19: Line 19:


* Real world heap exploitation - Linux Kernel CVE as case study.
* Real world heap exploitation - Linux Kernel CVE as case study.
Please go over the 4 parts of the blog post as well as the slide deck before this session, and have the target VM ready (pay attention to which kernel release this bug has been fixed, and get a earlier version!)
Please go over the 4 parts of the blog post as well as the slide deck before this session, and have the target VM ready (pay attention to which kernel release this bug has been fixed, and get a earlier version!).


== Participants ==
== Participants ==

Revision as of 05:49, 4 October 2022

Heap foo
safe unlink
Art Meet-Up
Datum 2022-10-10
Start 19:00
Dauer 4h
Host hanemile
Relevant? Yes

Heap Basics

Mentors

Topics

  • Real world heap exploitation - Linux Kernel CVE as case study.

Please go over the 4 parts of the blog post as well as the slide deck before this session, and have the target VM ready (pay attention to which kernel release this bug has been fixed, and get a earlier version!).

Participants

Materials

CVE-2017-11176 (Start here)

Hints for the exploit