Security News > 2023 > June > Chrome and Edge zero-day: “This exploit is in the wild”, so check your versions now
The second reserves 64 bits for storing a memory address where the text string of a customer's name can be found.
As you can imagine, you'd better not mix up these two values, because a number that makes sense, and is safe, to use as a day number, such as 23157, would almost certainly be unsafe to use as a memory address.
As you can see from this memory dump of a running Windows program, the lowest memory address that's allocated for use starts at 0x00370000, which is 3,604,480 in decimal, way larger than any sensible day number.
CustomerName tells the compiler you're referencing a memory address, even though you're accessing the same stored data.
Tag is set to 0, the data isn't initialised for use yet, 1 means you're storing a date, 2 means it's a memory address, and anything else denotes an error.
The code would then accept your unvalidated function addresses as "Known and already verified safe", and would trustingly dispatch program execution to a rogue location in memory that you'd sneakily choosen in advance.
News URL
Related news
- Google fixes Chrome zero-days exploited at Pwn2Own 2024 (source)
- Google fixes one more Chrome zero-day exploited at Pwn2Own (source)
- Exploit code for Palo Alto Networks zero-day now public (source)
- Prompt Hacking, Private GPTs, Zero-Day Exploits and Deepfakes: Report Reveals the Impact of AI on Cyber Security Landscape (source)
- ArcaneDoor hackers exploit Cisco zero-days to breach govt networks (source)
- State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage (source)