Use Wasm to Bypass Latest Chrome v8sbx Again
01 – Introduction On November 2, 2023, POC2023 took place as scheduled in South Korea. I was fortunate to attend this conference where YYJB and
01 – Introduction On November 2, 2023, POC2023 took place as scheduled in South Korea. I was fortunate to attend this conference where YYJB and
0x00-Preface On July 21, 2023, @5aelo published a new discussion document on v8 sandbox: Function Pointer Wrapping. Given that this bypass will be patched by Chrome’s pointer wrapping
Our Senior Vulnerability Researcher, Wang Ding Qian, presented his research titled “Using Chrome PatchGap to Pwn Billions of Users”
Introduction UAF vulnerability has been discovered in the instruction optimization on x64 platforms in Chromium v8. Successful exploitation of this vulnerability could allow an attacker
Background CVE-2021–38003, or Issue 1263462, was a vulnerability exposed in 2021. The root cause of this vulnerability was due to the fact that JsonStringifier::SerializeObject() did not set the