Advancing exploitation: a scriptless 0day exploit against Linux desktops
http://scarybeastsecurity.blogspot.com/2016/11/0day-exploit-advancing-exploitation.html [scarybeastsecurity.blogspot.com]
2016-11-22 06:27
Today’s exploit comes courtesy of the FLIC format, one of the “good” gstreamer decoders. Some clever tricks are used to obtain a more predictable execution environment and reliable one shot exploitation.
This was a fairly ridiculous exploit. But it was worth doing because it’s proof that scriptless exploits are possible, even within the context of decent 64-bit ASLR.