Threat Post

Bypass Developed for Microsoft Memory Protection, Control Flow Guard

A researcher at Bromium is expected at DerbyCon to disclose a memory corruption mitigation bypass of Microsoft Control Flow Guard. Introduced in Windows 8.1 Update 3 and Windows 10, Control Flow Guard ...
Threat Post

Attack Method Highlights Weaknesses in Microsoft CFG

As Microsoft hardens its defenses with tools such as Control Flow Guard, researchers at Endgame are preparing for the reality of Counterfeit Object-Oriented Programming attacks to move from ...
EurekAlert!

Connect and corrupt: C++ coroutines prone to code-reuse attack despite CFI

A code-reuse attack named Coroutine Frame-Oriented Programming (CFOP) is capable of exploiting C++ coroutines across three major compilers, namely Clang/LLVM, GCC and MSVC. CFOP even succeeds in ...