Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Exploiting Windows COM - WinRT Services

Black Hat via YouTube

Start learning Write review
Scrimba Ad

Free courses from frontend to fullstack and AI

Learn More → Corporate Finance Institute Ad

Finance Certifications Goldman Sachs & Amazon Teams Trust

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the security vulnerabilities in Windows Component Object Model (COM) and Windows Runtime (WinRT) services in this 27-minute Black Hat conference talk. Dive into the extensive attack surfaces these widely-used technologies provide for hackers seeking Local Privilege Escalation (LPE), Remote Code Execution (RCE), and Sandbox Escape vulnerabilities. Learn from security researchers XueFeng Li and Zhiniang Peng as they discuss their findings of over 100 bugs in COM/WinRT services discovered within a year. Gain insights into cross-process communication vulnerabilities and potential security risks in UWP applications. Access the full abstract and presentation materials for a comprehensive understanding of exploiting Windows COM/WinRT services.

Syllabus

Exploiting Windows COM/WinRT ServicesExploiting Windows COM/WinRT Services

Taught by

Black Hat

Reviews

Start your review of Exploiting Windows COM - WinRT Services

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.