:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Microsoft Windows CI CiSetFileCache TOCTOU Security Feature Bypass

deepcoreNov 22, 2017

It is possible to add a cached signing level to an unsigned file by exploiting a TOCTOU in CI leading to circumvention of Device Guard policies and possibly PPL signing levels.

You must be logged in to post a comment.

Related Posts

Chitor CMS 1.1.2 SQL Injection

Multi-Vendor Online Groceries Management System 1.0 Remote Code Execution

Telit Cinterion IoT Traversal / Escalation / Bypass / Heap Overflow

Leave a Reply