Google
Current tag: memcpy
Exploiting MS14-066 / CVE-2014-6321 (aka “Winshock”)
Written on:November 29, 2014
Introduction I think enough time has passed now to provide a little more detail on how to exploit MS14-066 schannel vulnerability (aka “Winshock”). In this post I won’t be providing a complete PoC exploit, but I will delve into the details on exactly how to trigger the heap overflow along with some example modifications to OpenSSL so you can replicate the issue yourself. This vulnerability was announced while I was on…
Read more...
are closed