CIRCLE WITH A DOT

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

quarkslab@infosec.exchange

@quarkslab@infosec.exchange

Topics

Q

One bit flip to corrupt it all: Exploitation of an old Linux kernel vulnerability using PageJack, a modern technique to create Use After Free bugs
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized
2

1

0 Votes

2 Posts

0 Views

L

@quarkslab bravo
Q

Another antivirus 🛡️, another unfulfilled promise 😣.
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized
1

1

0 Votes

1 Posts

0 Views

Q

Another antivirus ️, another unfulfilled promise . @kaluche_ turns Avira's protection into a privilege escalation playground. This time: not 1, not 2, but 3 LPE vectors via symlink abuse (CVE-2026-27748, CVE-2026-27750) and unsafe deserialization (CVE-2026-27749).Find out more: https://blog.quarkslab.com/avira-deserialize-delete-and-escalate-the-proper-way-to-use-an-av.html
Q

Why macOS AVs shouldn’t trust PIDs 😄🍏 - new post by @Coiffeur0x90
Watching Ignoring Scheduled Pinned Locked Moved Uncategorized
1

1

0 Votes

1 Posts

0 Views

Q

Why macOS AVs shouldn’t trust PIDs - new post by @Coiffeur0x90Intego X9: XPC validation falls back to PID → PID reuse + posix_spawn() shenanigans ⇒ confused deputy / privileged methods abused 🧨Lesson: PID ≠ identity.Check it out https://blog.quarkslab.com/intego_lpe_macos_2.html

CIRCLE WITH A DOT

quarkslab@infosec.exchange

Topics

One bit flip to corrupt it all: Exploitation of an old Linux kernel vulnerability using PageJack, a modern technique to create Use After Free bugs

Another antivirus 🛡️, another unfulfilled promise 😣.

Why macOS AVs shouldn’t trust PIDs 😄🍏 - new post by @Coiffeur0x90