And there we go. Now have a working PoC for what is likely CVE-2020-0856 (the ADIDNS Info disclosure).

And by that I mean I've triggered an out of bounds read that would have been stopped by the patch. In our research we don't work towards full exploits for binary vulns, just a trigger for the precise singular vuln.

Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.