GitHub - niklasb/3dpwn: VirtualBox 3D exploits & PoCs
source link: https://github.com/niklasb/3dpwn
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
README.md
VirtualBox 3D PoCs & exploits
Author: @_niklasb
Exploits
See the subdirectories other than lib
.
Debug build
For Arch Linux, you can use the provided PKGBUILD in archpkg
to get a debug version of
5.2.18, with the 3D security fixes from July 2018 reverted.
Library
lib/hgcm.py
and lib/chromium.py
provide high-level access to the HGCM interface and
to the VBoxSharedCrOpenGL
service, via VBoxGuest
IOCTLs.
chromium.py
can be used to very easily experiment with Chromium from Python
inside the guest. I used it to build a very simple, completely dumb fuzzer that
found multiple trivial crashes in minutes.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK