Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore critical DCERPC vulnerabilities discovered in VMware vCenter Server through this 30-minute Black Hat conference presentation. Learn about four critical security flaws (CVE-2024-37079, CVE-2024-37080, CVE-2024-38812, and CVE-2024-38813) including three heap overflow vulnerabilities and one privilege escalation vulnerability that researchers successfully exploited to achieve unauthorized remote root access. Discover the DCERPC protocol fundamentals and understand how security researchers from QI-ANXIN TianGong Team overcame modern security defenses like ASLR and PIE using advanced heap fengshui techniques. Examine the exploitation methodology that enabled remote code execution with root privileges on vCenter Server, and understand how attackers can escalate from vCenter compromise to full ESXi control, potentially compromising entire virtualized infrastructures. Gain insights into the research process that led to these discoveries and the techniques used to chain vulnerabilities for maximum impact in VMware's widely-deployed virtualization platform.
