Date : 05 juin 2020 à 11:45 — 30 min.
Heap Overflow are a fairly common vulnerability in applications. Exploiting such vulnerabilities often rely on a deep understanding of the underlying mechanisms used to manage the heap. Windows 10 recently changed the way it managed its heap in kernel land.
This article aims at presenting the recent evolution of the heap mechanisms in Windows Kernel and to present new exploitation techniques specific to the kernel Pool.