Using Binary Diffing to Discover Windows Kernel Memory Disclosure Bugs
Tags
attack-pattern: Data Direct Software - T1592.002 System Services - T1569 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID e45ce260-32be-4eab-8c4a-24f828671dda
Fingerprint b69f895ffc2636ce
Analysis status DONE
Considered CTI value 2
Text language
Published Oct. 5, 2017, 9:22 a.m.
Added to db Feb. 17, 2023, 10:42 p.m.
Last updated Nov. 3, 2024, 7:27 p.m.
Headline Project Zero
Title Using Binary Diffing to Discover Windows Kernel Memory Disclosure Bugs
Detected Hints/Tags/Attributes 35/1/9
Source URLs
Redirection Url
Details Source https://googleprojectzero.blogspot.com/2017/10/using-binary-diffing-to-discover.html
URL Provider
Details Provider Source level domain
Details blogspot.com googleprojectzero.blogspot.com
Attributes
Details Type #Events CTI Value
Details CVE 4 
cve-2017-8684
Details CVE 4 
cve-2017-8685
Details CVE 4 
cve-2017-8680
Details File 22 
ntkrnlpa.exe
Details File 115 
win32k.sys
Details File 125 
ntoskrnl.exe
Details File 2 
tm.sys
Details File 12 
win32kbase.sys
Details File 15 
win32kfull.sys