Get 20% off all career paths from fullstack to AI
Master Windows Internals - Kernel Programming, Debugging & Architecture
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore critical DCERPC vulnerabilities discovered in VMware vCenter Server through this 30-minute Black Hat conference presentation. Learn about four critical security flaws (CVE-2024-37079, CVE-2024-37080, CVE-2024-38812, and CVE-2024-38813) including three heap overflow vulnerabilities and one privilege escalation vulnerability that researchers successfully exploited to achieve unauthorized remote root access. Discover the DCERPC protocol fundamentals and understand how security researchers from QI-ANXIN TianGong Team overcame modern security defenses like ASLR and PIE using advanced heap fengshui techniques. Examine the exploitation methodology that enabled remote code execution with root privileges on vCenter Server, and understand how attackers can escalate from vCenter compromise to full ESXi control, potentially compromising entire virtualized infrastructures. Gain insights into the research process that led to these discoveries and the techniques used to chain vulnerabilities for maximum impact in VMware's widely-deployed virtualization platform.
Syllabus
vCenter Lost: How the DCERPC Vulnerabilities Changed the Fate of ESXi
Taught by
Black Hat