home.social
Sign in Create account

#ioring — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #ioring, aggregated by home.social.

  1. Alexandre Borges @[email protected] ·

    The eighth article of the Exploiting Reversing Series (ERS) is now live. Titled “Exploitation Techniques | CVE-2024-30085 (Part 02)” this 91-page technical guide offers a comprehensive roadmap for vulnerability exploitation:

    exploitreversing.com/2026/03/3

    Key features of this edition:

    [+] Dual Exploit Strategies: Two distinct exploit versions leveraging the I/O Ring mechanism.
    [+] Exploit ALPC + WNF OOB + Pipe Attributes + I/O Ring: elevation of privilege of a regular user to SYSTEM.
    [+] Replaced ALPC one-shot write with Pipe Attribute spray for I/O Ring RegBuffers corruption: more reliable adjacency control.
    [+] Exploit WNF OOB + I/O Ring Read/Write: elevation of privilege of a regular user to SYSTEM.
    [+] Pure I/O Ring primitive: eliminated ALPC dependency entirely. WNF overflow directly corrupts I/O Ring RegBuffers for arbitrary kernel read/write.
    [+] Solid Reliability: Two complete, stable exploits, including an improved cleanup stage.

    This article guides you through two additional techniques for exploiting the CVE-2024-30085 Heap Buffer Overflow. While demonstrated here, these methods can be adapted as exploitation techniques for many other kernel targets.

    I hope this serves as a definitive resource for your research. If you find it helpful, please feel free to share it or reach out with your feedback!

    Enjoy the read and have an excellent day.

    #exploit #exploitdevelopment #windows #exploitation #vulnerability #minifilterdriver #kernel #heapoverflow #ioring

    #exploit #exploitdevelopment #windows #exploitation #vulnerability #minifilterdriver