This blog post will trigger a UAF vulnerability (CVE-2019-2215) in Binder from scratch. After preparing the necessary environment and tools, we will reach the KASAN output with the POC exploit.
The post Exploring Android Vulnerabilities and Binder: Part I appeared first on VerSprite.
To summarize again briefly, syscall is an instruction that lowers the privilege level of the currently running application to 0 and allows the program to be performed in higher privilege using the required registers. In this section, we look at the Syscall instruction at the assembly level and try to analyze it in detail.
The post Part 5: Comprehensive Research of Linux Operating System appeared first on VerSprite.
As we discussed in the previous parts, the Linux Kernel is a collection of code written entirely in C. This is important to keep in mind while we are dealing with the attack floats because the vulnerabilities found in the Linux Kernel can be found in any executable file written using the C programming language.
The post Part 3: Comprehensive Research of Linux Operating System appeared first on VerSprite.
Login