Did a write-up about analyzing 'SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 & CVE-2023-24955' through a memory dump of the w3wp.exe process. I cover different debugging techniques that can be applied to other w3wp.exe dumps as well. Tweet added by DebugPrivilege @DebugPrivilege

DebugPrivilege

5 months

Did a write-up about analyzing 'SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 & CVE-2023-24955' through a memory dump of the w3wp.exe process. I cover different debugging techniques that can be applied to other w3wp.exe dumps as well.

5

114

302

DebugPrivilege

@DebugPrivilege

5 months

Thanks to @wdormann for the memory dump!

0

1

✞ inversecos

@inversecos

5 months

@DebugPrivilege Huy nice 💗

0

C:\hristina

@divinetechygirl

5 months

@DebugPrivilege 👀

0

Ohm-I (Oh My) @ RenderATL

@mcohmi

5 months

@DebugPrivilege This is dope. I really like that Mex displayObj feature.

0

Replies