Google published an advisory for a use-after-free in the Chrome implementation of the FileReader API (CVE 2019-5786). The exploit leads to code execution in the Renderer process, and was used to fully compromise the host system.

Key Pointers:

  • Understanding the severity and the scope of impact
  • Understanding how the exploit works for the vulnerability
  • Covering the prerequisites for preparing the setup
  • Exploit demonstration for Google Chrome
  • Mitigations for preventing such attacks
Download Research Paper
RELATED POSTS

Customer Stories

Dec 20, 2024

ISO New England

Blog

Dec 20, 2024

Key Takeaways from the Forrester Security & Risk Summit: The Future of Risk Is Continuous and Dynamic

Blog

Dec 18, 2024

How One Client Transformed Cybersecurity to Outsmart Threat Groups