homepage
Open menu
Contact Sales

Weaponizing Browser-Based Memory Leak Bugs - Stephen Sims

  • Thursday, 23 Aug 2018 3:30PM EST (23 Aug 2018 19:30 UTC)
  • Speaker: Stephen Sims

Modern browsers participate in various exploit mitigations, often making it very difficult to exploit a discovered vulnerability. One of the most troublesome mitigations is Address Space Layout Randomization (ASLR). This control changes the layout of memory each time a process is started or the system is rebooted, removing any address predictability often desired by an attacker. Memory leak bugs can allow an attacker visibility into the affected process, rendering ASLR useless. Join Stephen for this advanced talk where he'll demonstrate weaponizing a memory leak bug affecting Internet Explorer 11 or Edge. This will include a summary of the relative bug class, triggering the bug, followed by walking through it in a debugger, and finally weaponizing it to aid in exploitation of the browser.

Stephen Sims is the lead course author of our advanced penetration testing and exploit writing and development courses, SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking and SEC760: Advanced Exploit Development for Penetration Testers

Login to Register

Related Content

Blog
N2C_blog_image.png
Security Awareness, Cybersecurity Leadership, Cloud Security, Open-Source Intelligence (OSINT), Industrial Control Systems Security, Digital Forensics, Incident Response & Threat Hunting, Cybersecurity and IT Essentials, Cyber Defense, Offensive Operations, Pen Testing, and Red Teaming, CyberLive, Workforce Development, Career Development, Why Certify, Imposter Syndrome, NetWars, Mentorship, Job Hunting, Operating System & Device In-Depth, Artificial Intelligence (AI)
A Visual Summary of SANS New2Cyber Summit 2024
Check out these graphic recordings created in real-time throughout the event for SANS New2Cyber Summit 2024
370x370-person-placeholder.png
Alison Kim
read more
Blog
HackFest_blog_image.png
Offensive Operations, Pen Testing, and Red Teaming, Open-Source Intelligence (OSINT), Penetration Testing and Red Teaming
A Visual Summary of SANS HackFest Summit
Check out these graphic recordings created in real-time throughout the event for SANS HackFest Summit 2023
370x370-person-placeholder.png
Alison Kim
read more
Blog
Offensive Operations, Pen Testing, and Red Teaming, Penetration Testing and Red Teaming
SEC670 Prep Quiz Answers
Answers for the SEC670 Prep Quiz. For more details about the course and the quiz, please clickthrough to see the quiz article.
370x370_jonathan-reiter.jpg
Jonathan Reiter
read more