Video wird geladen...

Video konnte nicht geladen werden

Beim Laden dieses Videos ist ein Problem aufgetreten. Dies könnte an einem vorübergehenden Netzwerkproblem liegen oder das Video ist möglicherweise nicht verfügbar.

CVE-2023-3390: UAF on Linux Netfilter nftables MFT_MSG_NEWRULE leads to LPE. We exploit this tiny 1-day vuln to pwn all targets of Google's kernelCTF for the first time in history. Nice and clear triple-kill 🥳

c0m0r1

1,809 subscribers

67,444 Aufrufe • vor 2 Jahren •via X (Twitter)

Gaming Wissenschaft & Technologie Bildung

Anya Rossi• Live Now

Private livecam show

6 Kommentare

Profilbild von c0m0r1

c0m0r1vor 2 Jahren

For details about vuln, exploit, and our novel techniques & research:

Profilbild von c0m0r1

c0m0r1vor 2 Jahren

Thanks to @0x10n for outstanding collaboration on COS exploit & post-exploit analysis, and @insu_yun & KAIST Hacking lab for unwavering support and encouragement!

Profilbild von h0mbre

h0mbrevor 2 Jahren

this is awesome, great job writing all the exploits

Profilbild von Minghao Lin

Minghao Linvor 2 Jahren

Strong!

Profilbild von 💫 Dor 🎗️

💫 Dor 🎗️vor 2 Jahren

nice

Profilbild von Alex Plaskett

Alex Plaskettvor 2 Jahren

@insitusec Great work, thanks for sharing! Netfilter, the subsystem that keeps giving.

Ähnliche Videos

Releasing a Windows 11 LPE exploit by b33f | 🇺🇦✊ and I. Exploits CVE-2023-21768, a vuln in afd.sys. Blog post soon!

Releasing a Windows 11 LPE exploit by b33f | 🇺🇦✊ and I. Exploits CVE-2023-21768, a vuln in afd.sys. Blog post soon!

chompie

265,388 Aufrufe • vor 3 Jahren

❗️Chronomaly: Android kernel exploit for CVE-2025-38352, previously exploited in-the-wild. Targets vulnerable Linux kernels v5.10.x. GitHub:

❗️Chronomaly: Android kernel exploit for CVE-2025-38352, previously exploited in-the-wild. Targets vulnerable Linux kernels v5.10.x. GitHub:

Dark Web Informer

12,635 Aufrufe • vor 5 Monaten

Do you use a virtual machine to browse dangerous links safely? If you use the Chrome browser inside that virtual machine, is it secure enough? As you might have guessed, the answer is not so much. We chained six unique CVEs from 2023 listed below. • Chrome Renderer RCE : CVE-2023-3079 • Chrome Sandbox Escape : CVE-2023-21674 • LPE in guest OS : CVE-2023-29360 • VMware Info Leak : CVE-2023-34044 • VMware Escape : CVE-2023-20869 • LPE in host OS : CVE-2023-36802

Do you use a virtual machine to browse dangerous links safely? If you use the Chrome browser inside that virtual machine, is it secure enough? As you might have guessed, the answer is not so much. We chained six unique CVEs from 2023 listed below. • Chrome Renderer RCE : CVE-2023-3079 • Chrome Sandbox Escape : CVE-2023-21674 • LPE in guest OS : CVE-2023-29360 • VMware Info Leak : CVE-2023-34044 • VMware Escape : CVE-2023-20869 • LPE in host OS : CVE-2023-36802

Theori

139,539 Aufrufe • vor 2 Jahren

We implemented an exploit for RediShell (CVE-2025-49844). While doing so, we discovered that the publicly available PoC incorrectly uses loadstring to trigger the Redis UAF. Kudos to Wiz for the interesting findings!

We implemented an exploit for RediShell (CVE-2025-49844). While doing so, we discovered that the publicly available PoC incorrectly uses loadstring to trigger the Redis UAF. Kudos to Wiz for the interesting findings!

DARKNAVY

41,439 Aufrufe • vor 8 Monaten

Say hello to Eternal Tux🐧, a 0-click RCE exploit against the Linux kernel from KSMBD N-Days (CVE-2023-52440 & CVE-2023-4130) Cheers to Pumpkin 🎃 for finding these CVEs + the OffensiveCon talk from gteissier & Quentin Minster Picavet for inspiration!

Say hello to Eternal Tux🐧, a 0-click RCE exploit against the Linux kernel from KSMBD N-Days (CVE-2023-52440 & CVE-2023-4130) Cheers to Pumpkin 🎃 for finding these CVEs + the OffensiveCon talk from gteissier & Quentin Minster Picavet for inspiration!

Crusaders of Rust

81,655 Aufrufe • vor 9 Monaten

This video shows my PoC for libssh CVE-2023-2283 (authentication bypass vuln). The attacker logs in with ED25519 authentication, despite not knowing the private key.

This video shows my PoC for libssh CVE-2023-2283 (authentication bypass vuln). The attacker logs in with ED25519 authentication, despite not knowing the private key.

Kev

173,767 Aufrufe • vor 3 Jahren

💥 We have reproduced both CVE-2023–29357 and CVE-2023–24955 in Microsoft SharePoint. The chain allows unauthenticated users to execute arbitrary commands on the server. Update your software ASAP!

💥 We have reproduced both CVE-2023–29357 and CVE-2023–24955 in Microsoft SharePoint. The chain allows unauthenticated users to execute arbitrary commands on the server. Update your software ASAP!

PT SWARM

58,177 Aufrufe • vor 2 Jahren

Prabhas failed to show Day1 euphoria and mass celebrations to Hindi Cinema. For the First Time ever in the History Hindi Cinema is going to witness Day 1 euphoria and we all know the Reason ‘India’s Biggest Mass Hero Jr NTR’

Prabhas failed to show Day1 euphoria and mass celebrations to Hindi Cinema. For the First Time ever in the History Hindi Cinema is going to witness Day 1 euphoria and we all know the Reason ‘India’s Biggest Mass Hero Jr NTR’

Thelonewolf45 🤵🏻

459,391 Aufrufe • vor 11 Monaten

"A Vulnerability to Hack The World" - CVE-2023-4863 The start of a mini series digging into the recent WebP vulnerability. In this first episode, we explore huffman tables!

"A Vulnerability to Hack The World" - CVE-2023-4863 The start of a mini series digging into the recent WebP vulnerability. In this first episode, we explore huffman tables!

LiveOverflow 🔴

44,787 Aufrufe • vor 2 Jahren

Dirty Frag: Unfixed Root Exploit Makes All Linux Systems Vulnerable Due to a broken embargo, this severe root exploit has no patches available for any Linux distribution. Ubuntu, RHEL, openSUSE... they're all vulnerable.

Dirty Frag: Unfixed Root Exploit Makes All Linux Systems Vulnerable Due to a broken embargo, this severe root exploit has no patches available for any Linux distribution. Ubuntu, RHEL, openSUSE... they're all vulnerable.

The Lunduke Journal

36,758 Aufrufe • vor 1 Monat

On this day in random Cub history: August 30, 2020 For the first time in MLB history, all three starting outfielders have multi-homer days. Kyle Schwarber, Ian Happ, and Jason Heyward all go deep twice in the 10-1 win.

On this day in random Cub history: August 30, 2020 For the first time in MLB history, all three starting outfielders have multi-homer days. Kyle Schwarber, Ian Happ, and Jason Heyward all go deep twice in the 10-1 win.

Daily Random Cub

38,832 Aufrufe • vor 1 Jahr

It's All-Star Game day 🤩 Here's Pablo Sandoval launching the first and only bases-loaded triple in All-Star Game history off Justin Verlander in the first inning from 2012 to get the day started.

It's All-Star Game day 🤩 Here's Pablo Sandoval launching the first and only bases-loaded triple in All-Star Game history off Justin Verlander in the first inning from 2012 to get the day started.

KNBR

219,772 Aufrufe • vor 11 Monaten

The Iron Claw was supposed to be the first leg of a triple feature for me back in December of 2023: this, then Ferrari, then American Fiction. 3 movies. 1 day. All at the Grove. The problem, however, is this film emotionally destroyed me. This was the only film I saw that day.

The Iron Claw was supposed to be the first leg of a triple feature for me back in December of 2023: this, then Ferrari, then American Fiction. 3 movies. 1 day. All at the Grove. The problem, however, is this film emotionally destroyed me. This was the only film I saw that day.

Cinema Tweets

625,262 Aufrufe • vor 4 Monaten

I just released the exploit and technical analysis of my CVE-2023-36424 - Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation. Happy Reading. #exploit #cybersecurity #news

I just released the exploit and technical analysis of my CVE-2023-36424 - Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation. Happy Reading. #exploit #cybersecurity #news

Pikala

45,652 Aufrufe • vor 2 Jahren

Venezuelan Opposition Leader María Corina Machado: For the first time in history we will have the Americas free of communism, dictatorship and narco-terrorism for the first time in history. Imagine what this will mean to have these dictatorships finally gone in Venezuela, in Cuba, and Nicaragua. This is equivalent to the fall of the Berlin Wall in the Americas.

Venezuelan Opposition Leader María Corina Machado: For the first time in history we will have the Americas free of communism, dictatorship and narco-terrorism for the first time in history. Imagine what this will mean to have these dictatorships finally gone in Venezuela, in Cuba, and Nicaragua. This is equivalent to the fall of the Berlin Wall in the Americas.

Clash Report

17,922 Aufrufe • vor 5 Monaten

linux LPE in rds kernel module

linux LPE in rds kernel module

V12

65,172 Aufrufe • vor 1 Monat

🚨POC RELEASED🚨PoC for SQL Injection leads to RCE in Wordpress released (CVE-2024-27956). #Clearnet #DarkWebInformer #DarkWeb #Exploit #Cyberattack #Cybercrime #Wordpress #Infosec #CTI #CVE202427956 #Vulnerability

🚨POC RELEASED🚨PoC for SQL Injection leads to RCE in Wordpress released (CVE-2024-27956). #Clearnet #DarkWebInformer #DarkWeb #Exploit #Cyberattack #Cybercrime #Wordpress #Infosec #CTI #CVE202427956 #Vulnerability

Dark Web Informer

51,367 Aufrufe • vor 2 Jahren

On This Day 1981 BBC Match Of The Day Swansea City in the top flight for the first time in their history, thumped Leeds United 5-1 on the opening day of the season. Commentator Idwal Robling. #SwanseaCity #LUFC

On This Day 1981 BBC Match Of The Day Swansea City in the top flight for the first time in their history, thumped Leeds United 5-1 on the opening day of the season. Commentator Idwal Robling. #SwanseaCity #LUFC

TV Football 1968-92

39,309 Aufrufe • vor 9 Monaten

Congratulations to Kameron Nelson on making history as the first gymnast in the WORLD to compete two triple backs in a floor routine ‼️🥳 What an incredible accomplishment after all of the work he’s put in!! #GoBucks | Big Ten Gymnastics

Congratulations to Kameron Nelson on making history as the first gymnast in the WORLD to compete two triple backs in a floor routine ‼️🥳 What an incredible accomplishment after all of the work he’s put in!! #GoBucks | Big Ten Gymnastics

Ohio State Men's Gym

54,974 Aufrufe • vor 1 Jahr

It‘s nearly go-time for the #GPFigure Series 2023 🥳⛸🔥 Tune in to the first live event this weekend and catch up on the latest news here 👉 #FigureSkating

It‘s nearly go-time for the #GPFigure Series 2023 🥳⛸🔥 Tune in to the first live event this weekend and catch up on the latest news here 👉 #FigureSkating

ISU Figure Skating

62,456 Aufrufe • vor 2 Jahren