tags:windowskernellpedouble_fetch original link: Exploiting the NT Kernel in 24H2: New Bugs in Old Code & Side Channels Against KASLR newsletter link: exploits.club Weekly Newsletter 19


Exploits Club Summary:

Sticking with the Windows theme, @gabe_k came through with a post about multiple kernel vulns and an LPE in a version of Windows that’s not even out yet. He was able to take advantage of the public preview to identify multiple double-fetches due to the broad changes intended to treat user-mode memory as volatile. The post then moves on to talk about the new KASLR changes, and how he was able to bypass them using a timing side channel.