#race-condition

[ follow ]
#edr-bypass #werfaultsecure #minidumpwritedump #endpoint-security #security-vulnerabilities #linux
Information security
fromTechzine Global
4 weeks ago

Novel attack technique freezes endpoint security via Windows function

EDR-Freeze leverages WerFaultSecure and MiniDumpWriteDump race conditions to suspend EDR processes from user mode, effectively disabling endpoint security without exploiting vulnerabilities.
Information security
fromThe Hacker News
4 months ago

New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora

Vulnerabilities in apport and systemd-coredump can let local attackers access sensitive information through race conditions.
[ Load more ]