sandboxescaper – WindowsTechs.com

Two zero days and 15 critical flaws fixed in July’s Patch Tuesday

Posted on July 10, 2019 by John E Dunn

Patch Tuesday July 2019 offers fixes for a total of 77 vulnerabilities, including 15 marked critical, rounded out by two zero-day flaws. Continue reading Two zero days and 15 critical flaws fixed in July’s Patch Tuesday→

Microsoft’s battle with SandboxEscaper zero days turns into grim Groundhog Day

Posted on June 13, 2019 by John E Dunn

Why is SandboxEscaper releasing vulnerabilities in such an irresponsible way? It matters not – Microsoft must patch what’s in front of it whatever the backstory. Continue reading Microsoft’s battle with SandboxEscaper zero days turns into grim Groundhog Day→

SandboxEscaper Debuts ByeBear Windows Patch Bypass

Posted on June 7, 2019 by Lindsey O'Donnell

SandboxEscaper is back, with a second bypass for the recent CVE-2019-0841 Windows patch. Continue reading SandboxEscaper Debuts ByeBear Windows Patch Bypass→

Zero-Day No More: Windows Bug Gets a Fix

Posted on June 4, 2019 by Tara Seals

0patch has released an interim micropatch for the dangerous LPE bug while we wait for Microsoft’s official patch. Continue reading Zero-Day No More: Windows Bug Gets a Fix→

SandboxEscaper Drops 4 Windows Zero-Days

Posted on May 23, 2019 by Richi Jennings

A Belgian security researcher just unleashed four Windows zero-days. T. van Houtte, also known as SandboxEscaper, dropped her proofs-of-concept onto GitHub this week.
The post SandboxEscaper Drops 4 Windows Zero-Days appeared first on Security Bouleva… Continue reading SandboxEscaper Drops 4 Windows Zero-Days→

SandboxEscaper Drops Three More Windows Exploits, IE Zero-Day

Posted on May 23, 2019 by Lindsey O'Donnell

As promised, developer SandboxEscaper has dropped exploit code for four more bugs, on the heels of releasing a Windows zero-day yesterday. Continue reading SandboxEscaper Drops Three More Windows Exploits, IE Zero-Day→

Windows Zero-Day Drops on Twitter, Developer Promises 4 More

Posted on May 22, 2019 by Tara Seals

SandboxEscaper has released her latest local privilege-escalation exploit for Windows. Continue reading Windows Zero-Day Drops on Twitter, Developer Promises 4 More→

Wi-Fi Chip Firmware Flaws Enable Over-the-Air Hacking

Posted on January 22, 2019 by Lucian Constantin

Wi-Fi chips used in several gaming consoles, Chromebooks, streaming boxes, routers and other types of devices have several firmware vulnerabilities that could allow attackers to compromise those systems over the air with no user interaction. The vulne… Continue reading Wi-Fi Chip Firmware Flaws Enable Over-the-Air Hacking→

New Windows Zero-day Bug Allows Deleting Arbitrary Files

Posted on January 2, 2019 by Lucian Constantin

A security researcher released exploit code for an unpatched bug in Windows that could allow an attacker with limited privileges to delete system files. Exploiting the bug requires winning a race condition on the machine, so a successful exploit can t… Continue reading New Windows Zero-day Bug Allows Deleting Arbitrary Files→

Researcher Drops Third Windows Zero-Day Exploit in Four Months

Posted on December 21, 2018 by Lucian Constantin

A security researcher who uses the online handle SandboxEscaper has published proof-of-concept exploit code for an unpatched vulnerability in Windows. The flaw is located in the “MsiAdvertiseProduct” function, which, according to Microsoft… Continue reading Researcher Drops Third Windows Zero-Day Exploit in Four Months→