The zero-day exploits of Operation WizardOpium

CERT-LatestNews KasperskyNews ThreatsCybercrime Uncategorized VulnerabilitiesAll VulnerabilitiesGoogle VulnerabilitiesMicrosoft VulnerabilitiesOS

Microsoft Windows elevation of privilege exploit. The shellcode appeared to be a Reflective PE loader for the Portable Executable module that was also present in the exploit. This module mostly consisted of the code to escape Google Chrome’s sandbox by exploiting the Windows kernel component win32k….