GitHub - niklasb/3dpwn: VirtualBox 3D exploits & PoCs

5 years ago

source link: https://github.com/niklasb/3dpwn
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.

README.md

VirtualBox 3D PoCs & exploits

Author: @_niklasb

Overview article.

Exploits

See the subdirectories other than lib.

Debug build

For Arch Linux, you can use the provided PKGBUILD in archpkg to get a debug version of 5.2.18, with the 3D security fixes from July 2018 reverted.

Library

lib/hgcm.py and lib/chromium.py provide high-level access to the HGCM interface and to the VBoxSharedCrOpenGL service, via VBoxGuest IOCTLs. chromium.py can be used to very easily experiment with Chromium from Python inside the guest. I used it to build a very simple, completely dumb fuzzer that found multiple trivial crashes in minutes.

GitHub - niklasb/3dpwn: VirtualBox 3D exploits & PoCs

README.md

VirtualBox 3D PoCs & exploits

Exploits

Debug build

Library

Recommend

最前线丨刘强东现已回国，逮捕期间未受到任何指控

上次上榜当天即被封禁一个月，所以只能注册新号来发图。前几天忙，现在儿子终于上学去...

用AI识别内部人威胁面临的道德规范

Mark Jason Dominus: Why I never finish my Haskell programs (part 1 of ∞)

程序员着装的改变

子弹短信隐私保护条款引争议：信息泄露为何不担责 - Smartisan 锤子科技 - cnBeta.COM

男子偷看妻子微信怀疑其出轨午夜连杀妻子和岳母 - 人物 - cnBeta.COM

刘强东“在美涉性侵”事件纽约时报、华尔街日报都报了 - Media 全球媒体 - cnBeta.COM

子弹短信员工福利曝光：多达18项奢侈待遇胜巨头 - Smartisan 锤子科技 - cnBeta.COM

小米挑起价格战无线充行业恐将洗牌 - Xiaomi 小米科技 - cnBeta.COM

About Joyk